THIS WEEK'S SPONSOR:

Kolide

The fleet visibility solution for Mac, Windows, and Linux that can help you securely scale your business


iPhone Vulnerability Allows Read Access On Ubuntu Lucid Lynx, Even When PIN Locked

So you thought your PIN-protected iPhone was secure enough to keep your friends away from trying to unlock it and call your mom pretending they kidnapped you. I’m sorry folks, you might want to reconsider your mobile security.

It turns out that even when an iPhone is locked with a PIN you can mount it and gain nearly full read access using a computer running Ubuntu Lucid Lynx. As you can read in this in-depth report from Bernd Marienfeldt (found via Engadget), it is possible to access the internal iPhone storage and  access content, which is not encrypted. Also, Bernd believes they’re just a step away from gaining full read / write access, which should allow to a) expose data and b) do stuff with your iPhone, like making phone calls to your mom. Oh and yes, this vulnerability works with non-jailbroken devices.

Finally, it seems like Apple is working on a fix but it’s not providing us a possible release date:

“Apple could reproduce the described serious issue and believes to understand why this can happen but cannot provide timing or further details on the release of a fix.”

We know that Apple is working hard on enhancing the enterprise capabilities of the future iPhone OS 4.0, and I’m sure this will be fixed in the new OS. But until that time, don’t trust the friend using Ubuntu. And tell your mom you’re safe.

Unlock More with Club MacStories

Founded in 2015, Club MacStories has delivered exclusive content every week for over six years.

In that time, members have enjoyed nearly 400 weekly and monthly newsletters packed with more of your favorite MacStories writing as well as Club-only podcasts, eBooks, discounts on apps, icons, and services. Join today, and you’ll get everything new that we publish every week, plus access to our entire archive of back issues and downloadable perks.

The Club expanded in 2021 with Club MacStories+ and Club Premier. Club MacStories+ members enjoy even more exclusive stories, a vibrant Discord community, a rotating roster of app discounts, and more. And, with Club Premier, you get everything we offer at every Club level plus an extended, ad-free version of our podcast AppStories that is delivered early each week in high-bitrate audio.

Choose the Club plan that’s right for you:

  • Club MacStories: Weekly and monthly newsletters via email and the web that are brimming with app collections, tips, automation workflows, longform writing, a Club-only podcast, periodic giveaways, and more;
  • Club MacStories+: Everything that Club MacStories offers, plus exclusive content like Federico’s Automation Academy and John’s Macintosh Desktop Experience, a powerful web app for searching and exploring over 6 years of content and creating custom RSS feeds of Club content, an active Discord community, and a rotating collection of discounts, and more;
  • Club Premier: Everything in from our other plans and AppStories+, an extended version of our flagship podcast that’s delivered early, ad-free, and in high-bitrate audio.