From CNET: Apple has quickly put the kibosh on one of the latest bugs found in its iOS mobile software.
Demoed Monday in a YouTube video, the flaw enlisted Siri to run a Twitter search to look for any results with an email address. On an iPhone 6S or 6S Plus, you could then "force tap" the email link to access the pressure-sensitive 3D Touch menu and choose the option Add to Existing Contact, giving you access to all contacts on the phone. You could also select Create a New Contact and add a photo to that contact, thus providing access to all photos stored on the phone.
On Tuesday, Apple confirmed to the Washington Post that the vulnerablilty was repaired. The bug was corrected on the company's end, eliminating the need for iPhone users to install yet another update to iOS.
The problem, which had existed since iOS 9.0 arrived, shows how challenging it can be for a company like Apple to test for every potential weakness when rolling out a new edition of its mobile software. Flaws that allow someone to skirt your lock screen and access certain types of content have been especially frustrating since they undermine the whole idea of securing your iPhone with a passcode.
View: Article @ Source Site
