Apple's Beats brand in April unveiled the Powerbeats Pro, a redesigned wire-free version of its popular fitness-oriented Powerbeats earbuds.
Apple Fixes Siri Bug Allowing Access to Photos and Contacts on Locked Device
A Siri vulnerability that allowed access to a user's photos and contacts on a locked iPhone running iOS 9.3.1 was patched server-side this afternoon by Apple.
Shared last night by Jose Rodriguez, the vulnerability used Siri's ability to access Twitter to find an email link or phone number, which could be pressed to open up an editable list of contacts even on a device that was locked. Through access to contacts, a user's full photo library was also visible.
As seen in the video below, the vulnerability relied on asking Siri to perform a Twitter search. If an email address, phone number, or other contact related detail came up, it would give direct access to Photos and Contact data. While the method worked on the iPhone 6s as of this morning, it is now disabled on all devices because it is no longer possible for Siri to conduct a Twitter search on a locked device.
When using a locked iPhone, asking Siri to "Search Twitter" now results in the personal assistant saying "You'll need to unlock your iPhone first." Without the ability to search Twitter on a locked device, there is no way to get the exploit to work. Apple confirmed the fix in a short statement given to The Washington Post.
According to 9to5Mac, a second Siri-related bug was also fixed today. Previously it was possible to enable both Night Shift and Low Power Mode by asking Siri to enable Night Shift after Low Power Mode was turned on, but that is no longer possible. Siri now warns that turning on Night Shift requires turning off Low Power Mode.
In early iOS 9.3 betas, Night Shift did work with Low Power Mode, but in iOS 9.3 beta 4, Apple removed the functionality. Night Shift and Low Power Mode cannot be run simultaneously.
Shared last night by Jose Rodriguez, the vulnerability used Siri's ability to access Twitter to find an email link or phone number, which could be pressed to open up an editable list of contacts even on a device that was locked. Through access to contacts, a user's full photo library was also visible.
As seen in the video below, the vulnerability relied on asking Siri to perform a Twitter search. If an email address, phone number, or other contact related detail came up, it would give direct access to Photos and Contact data. While the method worked on the iPhone 6s as of this morning, it is now disabled on all devices because it is no longer possible for Siri to conduct a Twitter search on a locked device.
When using a locked iPhone, asking Siri to "Search Twitter" now results in the personal assistant saying "You'll need to unlock your iPhone first." Without the ability to search Twitter on a locked device, there is no way to get the exploit to work. Apple confirmed the fix in a short statement given to The Washington Post.
According to 9to5Mac, a second Siri-related bug was also fixed today. Previously it was possible to enable both Night Shift and Low Power Mode by asking Siri to enable Night Shift after Low Power Mode was turned on, but that is no longer possible. Siri now warns that turning on Night Shift requires turning off Low Power Mode.
In early iOS 9.3 betas, Night Shift did work with Low Power Mode, but in iOS 9.3 beta 4, Apple removed the functionality. Night Shift and Low Power Mode cannot be run simultaneously.
Tag: iOS 9.3
[ 101 comments ]
Top Rated Comments
(View all)
43 months ago
Hate Apple or not, but you have to give them props for these security updates. Personally, the fact that I only see this bypass on YouTube a few hours ago and have just seen an article about Apple sending out an update to fix it just amazes me. I remember when I had an LG and I had to beg and pray that I would even get an update, lol.
Actually it was a server side fix, not a software update.
[doublepost=1459903747][/doublepost]
Siri is as attractive to me as FaceBook or Microsoft.
I would love an iPhone that didn't support it.
Options>General>Siri>disable
There you have it.
43 months ago
Siri is as attractive to me as FaceBook or Microsoft.
I would love an iPhone that didn't support it.
Wow. Just. Wow. The all high and mighty more attractive than Facebook and Microsoft person can't figure out how to turn off siri
43 months ago
Just today, I was typing away, when suddenly a bloody popup window asked me if I wanted to turn on dictation. Just bugger off, Apple. I don't want your foul news, I don't want your cynical music subscription, I don't want your spam forced down my throat.
I wish Donald Trump was CEO of Apple. He'd be a darn sight better than Cook.
Yeah, he could build a wall around Siri and then we'd never have to hear from her again!
43 months ago
Siri is as attractive to me as FaceBook or Microsoft.
I would love an iPhone that didn't support it.
43 months ago
Hate Apple or not, but you have to give them props for these security updates. Personally, the fact that I only see this bypass on YouTube a few hours ago and have just seen an article about Apple sending out an update to fix it just amazes me. I remember when I had an LG and I had to beg and pray that I would even get an update, lol.
43 months ago
Siri is as attractive to me as FaceBook or Microsoft.
I would love an iPhone that didn't support it.
Wow. Delete your account.
43 months ago
Just today, I was typing away, when suddenly a bloody popup window asked me if I wanted to turn on dictation. Just bugger off, Apple. I don't want your foul news, I don't want your cynical music subscription, I don't want your spam forced down my throat.
I wish Donald Trump was CEO of Apple. He'd be a darn sight better than Cook.
43 months ago
Just today, I was typing away, when suddenly a bloody popup window asked me if I wanted to turn on dictation. Just bugger off, Apple. I don't want your foul news, I don't want your cynical music subscription, I don't want your spam forced down my throat.
Wow. This is triggered by pressing the "fn" key twice, quickly. I don't see how it could be considered "spam."https://support.apple.com/HT202584
43 months ago
"Hey, Siri. Why doesn't Apple pay at a very minimum 30% tax
in the country where the actual sale is made?"
"Let me check on that..."
"Did you require access to a user's photos and contacts instead?"
in the country where the actual sale is made?"
"Let me check on that..."
"Did you require access to a user's photos and contacts instead?"
[ Read All Comments ]
Television maker LG says that updates will soon arrive that make HomeKit and AirPlay 2 available on supported TVs.
LG's Australian support account on Twitter responded to a customer query...
Alongside the launch of iOS 12.4, Apple today released new versions of iOS 9.3.6 and iOS 10.3.4 for older iPhones and iPads that aren't able to run iOS 12.4.
The iOS 9.3.6 update is...
Alongside the release of iOS 12.4 with its new data migration tools for iOS devices, Apple today released a new 12.4 software update designed for the HomePod.
The new HomePod software will be...
Apple today released macOS Mojave 10.14.6, the sixth update to the macOS Mojave operating system that first launched in September. macOS Mojave 10.14.6 comes over a month after the release of macOS...
Apple today released tvOS 12.4, the eighth update to the tvOS 12 operating system that runs on the fourth and fifth-generation Apple TV models. tvOS 12.4 comes more than a month after the release of...
Apple is reportedly in advanced talks with Taiwanese display manufacturers to use microLED displays in its products as soon as next year, according to a new report.
Citing sources with...
After a busy few weeks of news and rumors, things slowed down a little bit this week, but there were still some major stories worth highlighting. Those include our first hands-on look at dummy models...
For this week's giveaway, we've teamed up with Reolink to offer MacRumors readers a chance to win an Argus 2 wire-free rechargeable home camera and a solar panel for charging it up outdoors.
...
