Latest iPhone exploit turns off Find My Phone service

Yesterday, a new iPhone hack was published. The security flaw allows the hacker to turn off the Find My Phone service Apple provides with their devices - preventing the original owner from tracking, erasing or ringing their iPhone. Security researcher Bradley Williams found an exploit to bypass this, resulting in the loss of the Find My Phone service for that particular device. This exploit can be used on iOS 7.04 and earlier versions.

The security hack takes advantage of Apple's iCloud, and requires very few steps. The method is very easy to follow, as seen in the short YouTube clip below. Williams clearly shows the method can be completed in just a few minutes.

The hack does require hands on contact with the device, as well as knowing any passcode, or relying on a lack of fingerprint id. Although these factors may limit the widespread use of this exploit (many users use the security features), under the right circumstances the exploit could be extremely effective.

Steps to hack 'Find My iPhone':

  1. Navigate to iCloud in the devices settings.
  2. Select your account.
  3. Change the password to an incorrect one, then hit Done.
  4. When the iPhone displays the 'wrong password' warning, Tap OK and then tap Cancel.
  5. Reselect your account.
  6. Clear the description field and then press Done.

You will notice Find My iPhone is now toggled off.

The good news is that the hack has also been tested on iOS 7.1 beta, and has not worked. This means that the exploit is only effective for a limited time. However, be particularly careful in the next few weeks, and passcode or fingerprint protect your device as an additional security measure. Apple strongly recommends using the passcode and fingerprint ID security features to prevent this happening to your iPhone.

Source:  Youtube via The Hackers News | Image via iPhone Hacks

Report a problem with article
Previous Story

Leaked slide shows off notification center in Windows Phone 8.1

Next Story

HP will now limit firmware updates to Enterprise customers under warranty


Commenting is disabled on this article.

If it had been Android, BB or WP comments would be telling how unsafe these OSs are, yet being Applets, it's like "Not big deal"... Really cracks me up!

this might NOT be all bad. suppose you didn't lose your phone, does it make your phone completely invisible? so you can't be tracked or.. is this just the users system that can't track it.

I admit: with all this NSA hacking and tracking and snooping.. I'm gun-shy so to speak.

Its not as major as he made out to be in the video.
He would still need the original owners passcode or fingerprint to unlock the device in the first place to put the hack in place.
I dont know bout any of you, but i've never given my iPhone to anyone unlocked.

Agreed, the chances of the exploit actually taking place is very low. However if someone DID manage to obtain your device unlocked, or if another security flaw that would bypass the lockscreen would arise, then this hack may be effective!

Power users such as those who frequent this site tend to lock their devices down. Other users, not so much.

Source: me, after finding an unlocked iPhone on a train. One that was owned by an executive of Nokia who should have known better.