|    |    |    | Today: 04-Apr-2020 |

iOS 7 exploit disables Find My iPhone without a password

February 10, 2014 | Posted in News

AN VULNERABILITY has been discovered in Apple's iOS 7 mobile operating system that allows anyone to disable Find My iPhone without authorisation.

Bradley Williams has shown off the bug on Youtube in a video clip, in which he was successfully able to switch off Apple's Find My iPhone app without having to enter a password.

Williams said, "MAJOR Security flaw in Find My iPhone iCloud Lock BYPASS. Activation Lock Bypass. This video is to show a security flaw in Apple's find my iphone feature so Apple can fix this. I tried to contact Apple and nobody has responded."

The bypass, which reportedly can be easily replicated on any iPhone running iOS 7.0.4 or higher, is rather simple to carry out, too.

As demonstrated in the video below, you simply need to navigate to iCloud settings, select your account, change the password to an incorrect one and press Done, Tap OK followed by Cancel, reselect your account and empty the description field and then tap Done. After you perform these steps Find My iPhone will be disabled without the need to enter a password - the correct one, that is.

The bypass only works on iPhones that do not have Touch ID or a passcode switched on. This means that it is likely to affect only handsets that have been left unlocked in public, as once the feature has been disabled users will no longer be able to locate their likely stolen iPhones.

This is the latest of a number of flaws that have been found in Apple's iOS 7 mobile operating system. Perhaps the most notable discovery was that iOS 7 allowed anybody to bypass the iPhone's passcode simply by going through the Control Center, a glitch that Apple promply fixed.

Apple has yet to respond to our request for comment, but the issue likely will be fixed in Apple's upcoming iOS 7.1 update.

Taged in: disables, Exploit, iphone, password, without