iOS 7 Lock Screen Vulnerability Gives Access to Photos, Email

There appears to be a lock screen vulnerability in iOS 7 that allows access to a device’s photos, email, and social networking accounts. According to Jose Rodriguez, who provided a video of the bug to Forbes, a simple set of gestures gives unwarranted access to a device running iOS 7.

The exploit can be initiated by swiping upwards on the device's lock screen to access the Control Center and open the Clock app. Once the clock app is open, holding the phone's sleep button will cause the "Slide to Power Off" option to appear. Tapping on cancel at this juncture and then double clicking on the home button will open the phone's multitasking screen, providing access to the camera and the photos on the device. The key to the trick, however, is to access the camera app from the lock screen first, causing it to appear in the recently used apps list.

Because the photos from the camera app can be shared via Flickr, Twitter, Facebook, and email, an intruder can also gain access to those apps using the sharing tools.

I tested the technique on an iPhone 5 running iOS 7, and it worked. Rodriguez’s video shows it working on an iPad, too. It’s not yet clear if the same exploit can bypass the lockscreen of an iPhone 5s or 5c, but Rodriguez tells me he believes it will. I’ve reached out to Apple for comment and I’ll update this post if I hear from the company.

Apple has been plagued by lock screen vulnerabilities multiple times over the course of the year, with a bug appearing in iOS 6.1 that allowed lock screen access to the phone when the emergency call function was manipulated.

The current iOS 7 vulnerability can be avoided by preventing the Control Center from appearing on the lock screen. The setting can be turned on by opening the Settings app, selecting "Access on Lock Screen" and toggling it off.

Update: Apple has told AllThingsD that it is working on a fix.

"Apple takes user security very seriously," Apple spokeswoman Trudy Muller told AllThingsD. "We are aware of this issue, and will deliver a fix in a future software update."

Top Rated Comments

(View all)
Avatar
86 months ago
I've always wondered how people stumble upon these vulnerabilities, then turn around and are even able to recreate them.
Score: 31 Votes (Like | Disagree)
Avatar
86 months ago
Here we go again....

One of the reasons I wait a week or two before upgrading.
Score: 14 Votes (Like | Disagree)
Avatar
86 months ago

ive been trying to get this to happen, cant make it work on my 5.


That's because you forgot to put your left index finger in your right ear....:confused:
Score: 12 Votes (Like | Disagree)
Avatar
86 months ago

I've always wondered how people stumble upon these vulnerabilities, then turn around and are even able to recreate them.


Often just by playing around. Sometimes playing around leads to one thing which causes you to realize "Wait, what if I do this too?" and, whoops, you've stumbled on a path that nobody ever expected.

Then you realize you're in the "bad" state (I can see photos and I'm not supposed to be able to!) and the next step is to try to recreate the actions that got you there, until you distill it down to exactly what the problem is.

Then you file a problem report to the software guys and they can fix it...

Locking down software is kind of like locking down a physical room. It's easy to set up the obvious stuff -- put locks on the doors and windows -- but then you have to start thinking about the more far-fetched scenarios. What if you gained access to the boiler room, then snuck up through the ceiling tile? What if someone manages to find the spare key to the lock that you left in the bedroom? Thorough testing, and/or reports from accidental discoveries like this, are what's needed to plug up all the holes.

Do people have nothing better to do than to try and find ways to break iOS?


No software is perfect. Don't you want them to find the flaws so they can be fixed quickly?
Score: 9 Votes (Like | Disagree)
Avatar
86 months ago
Do people have nothing better to do than to try and find ways to break iOS?
Score: 9 Votes (Like | Disagree)
Avatar
86 months ago

Mine still says up to date..... Is that a 5?

7.0.1 is 5S and 5C only. That picture is clearly a 5S. Look at the home button.
Score: 8 Votes (Like | Disagree)

Top Stories

Apple Sending Replacement AirPods With Unreleased Firmware, Rendering Them Unusable

Wednesday April 8, 2020 9:23 am PDT by Juli Clover
Customers who require a replacement AirPod from Apple have in some cases been receiving an AirPod running 2D3 firmware, which is not a version of the AirPods firmware that's been publicly released. As described on the MacRumors forum and Reddit (via iMore), customers who get an AirPod with the 2D3 firmware are unable to pair it with the existing unreplaced AirPod, leaving the AirPods unable...

Facebook Launches 'Tuned' Messaging App for Couples

Wednesday April 8, 2020 4:50 am PDT by Tim Hardwick
Facebook has quietly released Tuned, a new messaging app designed to provide a "private space" for couples to connect, reports The Information. Designed by NPE, an experimental group within the company that was established last year, the app encourages couples to share messages, notes, cards, voice memos, photos and Spotify songs with each other, thereby creating a "digital scrapbook" of...

'Leaked' Images Allegedly Show iPhone 12 With Smaller Notch, Rear Camera Redesign, and Home Screen Widgets

Tuesday April 7, 2020 4:28 am PDT by Tim Hardwick
Two images shared on social media this morning are currently stoking speculation about possible hardware redesigns coming to the iPhone 12 and the potential introduction of Home screen widgets in iOS 14. Shared by Twitter user Fudge (choco_bit), the images depict a front and rear graphical representation of a smartphone with interface elements on the screen, suggesting it came out of a...

LG Begins Rolling Out 2020 NanoCell TVs With AirPlay 2 and HomeKit, Pricing Starts at $599

Thursday April 9, 2020 7:32 am PDT by Joe Rossignol
LG today announced pricing and availability for its 2020 NanoCell TVs with AirPlay 2 and HomeKit support in the United States. The first 4K models are rolling out now, with pricing starting at $599 for a 55-inch model. The entire 4K lineup will be released by September, including up to an 86-inch model for $3,299. 8K models will also be rolling out in May and June, including 65-inch and...

Apple Releases iOS and iPadOS 13.4.1 With Fix for FaceTime Bug

Tuesday April 7, 2020 10:06 am PDT by Juli Clover
Apple today released iOS and iPadOS 13.4.1, minor updates that come two weeks after the release of iOS and iPadOS 13.4, major updates that introduced iCloud Folder Sharing, a new Mail toolbar, trackpad support for the iPad, and more. The iOS and ‌iPadOS‌ 13.4.1 updates are available on all eligible devices over-the-air in the Settings app. To access the updates, go to Settings > General...

Leaker Claims New 13-inch MacBook Pro Coming as Soon as Next Month

Monday April 6, 2020 2:56 am PDT by Tim Hardwick
Apple will announce a new 13-inch MacBook Pro in May with the codename J223, according to a rumor shared by YouTuber and leaker Jon Prosser. Note: it’s a refresh to the current 13” So the bigger 14” display upgrade is a big possibility— Jon Prosser (@jon_prosser) April 4, 2020 Analyst Ming-Chi Kuo has said Apple plans to release new MacBook Pro and MacBook Air models with scissor keyboards ...

Apple Reportedly Targeting WWDC for Over-Ear Headphones Launch, New 'AirPods X' Later in the Year

Tuesday April 7, 2020 7:00 am PDT by Eric Slivka
Rumors of Apple-branded over-ear headphones have been circulating for quite some time, while more recent rumors have mentioned an "AirPods Pro Lite" that could also be in the works, and Twitter leaker Jon Prosser's recent foray into Apple rumors provides a bit more detail on what we might able to expect for these products. Current Beats Studio3 Wireless and BeatsX On the over-ear side,...

2020 iPad Pro Confirmed to Lack a U1 Ultra Wideband Chip

Tuesday April 7, 2020 7:52 am PDT by Eric Slivka
Last week, we laid out evidence suggesting that the just-released iPad Pro models do not contain a U1 Ultra Wideband chip, including the lack of any mention of the chip in tech specs or Apple's press materials, the absence of software support for U1 features, and more. Most tellingly, iFixit was unable to find the chip or related antennas in the device. Daring Fireball's John Gruber has follo...

Apple Shares Assembly and Use Instructions for New Face Shields, Shipping 1 Million Per Week to Medical Workers

Tuesday April 7, 2020 8:54 am PDT by Eric Slivka
Following this weekend's news from Tim Cook that Apple is working with its supply chain to produce a million face shields per week for medical workers, the company has shared a support document outlining how to assemble and adjust the shields. The document includes a series of images and animations showing how the simple three-piece product can be assembled for either a regular fit or with...

HBO GO and HBO NOW Will No Longer Be Available on 2nd and 3rd Gen Apple TVs Starting April 30

Wednesday April 8, 2020 7:05 am PDT by Joe Rossignol
HBO today announced that its HBO GO and HBO NOW streaming services will no longer be available on second-generation and third-generation Apple TV models starting April 30, 2020. In a support document on its website, HBO says this change is being made "in order to provide the best streaming experience":In order to provide the best streaming experience, we need to make some changes to our...