Comms: Apple iPhone security issue noted by US-CERT
The USA's IT Security group, US-CERT, has warned of a security issue with iPhone 3G and later models which allows the bypassing of password-based security by a person who holds the phone.
Most Recent - This Section
Comms: new mobile app aims to deliver "SuperHD" VOIP for mobiles in JapanComms: Indian mobile sector in disarray
Comms: Mobile "apps" to have stronger privacy controls
Comms: the use and abuse of mobiles in disorder
Comms: a new use for a biscuit tin
Most Recent - Whole Site
The Risk Professional: Green Capital Consulting GroupLegal Professional: Baker Mac lawyer guilty of money laundering and securities fraud
Sales and Marketing: shooting oneself in the foot
Business Crime: Dear Mrs Kate Dave: Yes, please. Send it now.
The Risk Professional: Is your data secure enough for the UK's ICO?
Most Recent - BankingInsuranceSecurities.Com
Sanctions: USA PATRIOT Act designation 20120522Sanctions: OFAC Update 20120515
Sanctions: OFAC update 20120508
Sanctions: OFAC Update 20120517
Sanctions: OFAC Update 20120517 - 2
The issue is described as follows:
Race condition in Apple iOS 4.0 through 4.1 for iPhone 3G and later allows physically proximate attackers to bypass the passcode lock by making a call from the Emergency Call screen, then quickly pressing the Sleep/Wake button.
The current version of the iOS is 4.2. See http://www.apple.com/ios/
"physically proximate" means that someone is holding your phone.
Download PDF version of this page
