iOS 5.0.1 bug bypasses security passcode to provide access to phone, contacts apps

“A new bug in Apple’s iOS 5.0.1 software could allow unauthorized access to contacts and the calling features of an iPhone, bypassing passcode protection,” Tom Warren reports for The Verge.

“That is the claim from iPhoneislam, which discovered the flaw this week,” Warren reports. “The method is a little tricky and involves inserting and ejecting the iPhone’s SIM card, leading to a bypass of the passcode and access to the phone app after several missed calls to the device.”

Warren reports, “Unlike previous iOS security flaws, the process needs to be performed a number of times and requires the “attacker” to know the victim’s phone number or have a spare SIM card handy.”

Read more in the full article here.

MacDailyNews Take: If this is the best “flaw” they can come up with, iOS’s security reputation is safe.

[Thanks to MacDailyNews Reader “Brawndo Drinker” for the heads up.]

14 Comments

      1. Ain’t English great? Hose, Nose, Pose are pronounced one way and Lose is not. But you’d think that people would learn. It’s not the only odd one. And spell check isn’t going to catch it.

        1. I have no idea why, but in the last few years i constantly see “loose” used for “lose”

          thought it was some pop culture crap at first, but it’s more of “lacking in education” i’m afraid.

  1. This is serious. If bad guy gets your phone on purpose to do bad: they already know your number and obviously have a SIM card. Then with a simple sequence of actions they can use you phone to call and get all your contacts.

    That is not a joke.

Reader Feedback

This site uses Akismet to reduce spam. Learn how your comment data is processed.