Skip to content
Naked Security Naked Security

Siri implicated in yet another iPhone lock screen hole

We can't reproduce an iPhone lock screen bug that hit the news last week - but there are plenty of lock screen lessons to learn anyway.

Last week, Computerworld reported a security hole in the iPhone lock screen.

The hole wasn’t catastrophic, but when you consider that “locked” is supposed to mean locked, you shouldn’t be able to change any configuration settings on someone else’s phone without unlocking it first.

The ComputerWorld “hack” involves popping up Siri at the lock screen by holding down the Home button for a second or so, and then saying the words, “Cellular data”. (In the UK, at least, you can also say “Mobile data”.)

Siri then asks if you’d like to turn data off, thus effectively cutting the phone off from the network.

This doesn’t sound like the end of the world from a security point of view, and perhaps it isn’t, but you can see how the feature could be abused.

By siriptiously (sorry, surreptitiously) turning off someone’s phone connection while they’re not looking, but leaving their phone apparently untouched, you could help an accomplice who is about to try some sort of social engineering attack against the victim that would otherwise attract their attention with an unwanted verification call or a warning SMS.

Sure, you could steal or hide their phone, or even just turn off the ringer, with a similar result, but a missing phone might be noticed, so to speak, and even silenced phones usually vibrate when they want attention.

According to Computerworld, the bug exists even on the latest iOS 10.3.2 release – that’s what we’re running, so we put it to the test.

Does it work?

The good news is that we couldn’t replicate Computerworld’s hack.

We were able to activate Siri, to issue the peremptory words, “Mobile data”, and to get directly at a screen offering to turn it off.

But when we told Siri to turn it off, he immediately said (our Siri is a bloke, don’t know why), “You’ll need to unlock your iPhone first,” and popped up the passcode screen to unlock the phone, as you would expect:

What to do?

The bad news is that you can never be quite sure which voice commands will, and which won’t, work when your device is locked – unless you can figure out and try all of them.

So, whether this is a bug or not, we strongly recommend that you turn Siri off at the lock screen – after all, it’s not called the lock screen for nothing.

To stop Siri listening in at the lock screen, go to Settings | Siri and turn off Access When Locked.

Better yet, unless you really don’t like touching your phone, consider turning Siri off altogether, which has the handy side-effect of telling Apple to discard all the pattern-matching voice data it’s collected from you so far:

While you’re about it, review the other iOS features you’ve enabled on the lock screen, in case you’re allowing more access than you thought.

It’s bad enough that Apple no longer allows you to block access to the camera app when your phone is locked; we recommend that you add as few additional lock screen options as you can.

Go to Settings | Touch ID & Passocde and look at the Allow access when locked section:

(We’ve got Siri turned off altogether; if he/she is enabled, you’ll see him/her on in this list, too.)

Remember, when it comes to your lock screen, less is more.


9 Comments

Just say, turn off cellular data.
She does it.

Don’t ask for the menu first.

There was no menu.

I woke up the phone by pressing the Home button to activate Siri, which worked.

I was able to get to the point where I could ask to turn off mobile data without unlocking the phone, as Computerworld suggested. I couldn’t go anywhere from there, though.

FWIW, I can’t reproduce this either on an iPhone 7 Plus running iOS 10.3.2 (14F89).

Users with “Find My iPhone” enabled would be unable to get a location via GPS if Mobile Data was turned off. If the phone was stolen, someone would potentially be able to hack into the device without being connected to the internet. Yes, a thief could turn the phone off… but what use would that be.

Not to do with Siri but a potential bug in iOS 10.3.2 – I use the biometric feature on my iPhone 7 plus to unlock my device for use and do not allow any apps to run while it is locked. I had a made a call to my wife the other day and when I hung up I hit the button on the right hand side to put my device to sleep and then put it into my pocket. A short time later my wife called me again saying did I realise I had made a further 4 calls to her which she had missed initiating voice mail to kick. These voice mails simply had the sound of me walking.

So if I do not allow any apps to run whilst my phone is locked and i have to use a biometric to wake it, how was this possible?

Perhaps it wasn’t actually locked? Perhaps you pressed the key yet didn’t quite, if that makes sense? What autolock time period do you have set? I have mine set very short (1 minute or 2 minutes) so it locks by itself PDQ if I should forget (or fail) to do so.

Comments are closed.

Subscribe to get the latest updates in your inbox.
Which categories are you interested in?