New iPhone Passcode Bypass Hack Exposes Photos and Contacts
Jose Rodriguez, an iPhone enthusiast, has discovered a passcode bypass vulnerability in Apple’s new iOS version 12 that potentially allows an attacker to access photos and contacts, including phone numbers and emails, on a locked iPhone XS and other recent iPhone models.
The attacker can begin the complicated 37-step iPhone passcode bypass process by tricking Siri and iOS accessibility feature called VoiceOver to sidestep the iPhone’s passcode and access users the contacts stored in the iPhone, including phone numbers and email addresses, and to access Camera Roll and other photo folders, by selecting a contact to edit and change its image.
Until Apple comes up with a fix, you can temporarily fix the issue by just disabling Siri from the lock screen.
Please refer to the video attached in the article for the iPhone passcode bypass hack.
Reference: https://thehackernews.com/2018/10/iphone-passcode-bypass-hack.html
This is really interesting because apple claims to have fixed it in ios version 12.0.1 but the research says that even the latest version is susceptible to the attack.