All the latest UK technology news, reviews and analysis


Siri security hole could let thieves use your iPhone 4S

20 Oct 2011

Apple iPhone 4S Siri

Security experts are warning iPhone 4S users of an unintended feature which could allow strangers to use certain functions on their handset, even if it has been locked.

As we found out in the V3 office, the new voice-activated personal assistant feature, Siri, can be a boon to the time-starved iPhone user.

However, Apple has allowed the tool to be used even when the phone has been locked, simply by pressing the home button. Effectively this means a complete stranger could give Siri verbal commands to compose emails, texts, change calendar settings and more.

Although the range of tasks that a would-be thief could carry out on a locked phone via Siri is limited, the fact that it is enabled by default has angered some security experts.

"What's disappointing to me though is that Apple had a clear choice here," wrote Sophos senior technology consultant, Graham Cluley.

"They could have chosen to implement Siri securely, but instead they decided to default to a mode which is more about impressing your buddies than securing your calendar and email system."

To turn Siri off when the phone is locked, users need to go to Settings/General/Passcode Lock and then turn the Siri option to off.

  • Comment  
  • Tweet  
  • Google plus  
  • Facebook  
  • LinkedIn  
  • Stumble Upon  
Phil Muncaster
About

Phil Muncaster is news editor at V3.co.uk, a role he has fulfilled since January 2010. Previously he was chief reporter for IT Week, having also worked as a reporter and senior reporter on the publication from 2005.

Before IT Week, Phil worked as a researcher for the Rough Guide. Prior to his work in journalism, Phil spent three years teaching English in Japan.

 

 

More on Privacy
What do you think?
blog comments powered by Disqus
Poll

BYOD vs CYOD vs BYOC poll

Which approach is your firm taking to managing employees' mobile devices?
23%
14%
4%
17%
30%
12%

Popular Threads

Powered by Disqus
Sony Xperia Z2 smartphone running Android KitKat 4.4

Sony Xperia Z2 video

We test out the latest Android KitKat flagship from Sony

Updating your subscription status Loading
Newsletters

Get the latest news (daily or weekly) direct to your inbox with V3 newsletters.

newsletter sign-up button
hpv33

Data protection: the key challenges

Deduplication is a foundational technology for efficient backup and recovery

rdc2

iPad makes its mark in the enterprise

The iPad can become a supercharged unified communications endpoint, allowing users to enhance their productivity

Java Developers X2 - Oslo

Java, Algorithms, Data Structures, Groovy, Rails, Linux...

Front End Web Developers x2 - Oslo

HTML, CSS (SASS), JavaScript, JQuery, Angular JS, ROR...

Web Developers x3 - work from home

HTML, CSS, JavaScript, PHP/PHP 5, MySQL, LAMP, Subversion...

Front End Web Developers (eCommerce) x3

HTML, CSS, JavaScript, eCommerce Package (Ideally Demandware...
To send to more than one email address, simply separate each address with a comma.