iOS 7 bug allows unauthorized users to bypass lockscreen and access email, photos

BY Kelly Hodgkins

Published 19 Sep 2013


iPhone owner Jose Rodriquez discovered a security flaw in iOS that lets anyone bypass the lockscreen passcode and access sensitive information stored in photos, Twitter, email and more. Forbes reported on the flaw and details how it can be replicated.

The security flaw is demonstrated in the video below and it works as follows:

  • When an iOS 7 device is locked, swipe up on the lockscreen to access control center and tap on the alarm clock.
  • Hold the phone’s power button until the option to power it off with a swipe appears.
  • Click cancel and then double click the home button to access the multitasking screen
  • From here you can access the camera and stored photos. You can share these photos on Facebook, Twitter, Flickr or via email.

This hack is confirmed to work on an iPhone 5 that’s running iOS 7. Until Apple issues a fix, users can disable control center on the lockscreen by going to Settings > Control Center and turning off “Access on Lock Screen.”

[Via Forbes]