Apple CEO Tim Cook speaks during an Apple special event on October 16, 2014 in Cupertino, California. (Photo : GettyImages/Justin Sullivan)
Security researchers have managed to find a working bypass for the activation lock feature found in iOS devices. It could allow someone to access a stolen iPad or iPhone in seconds.
Hermanth Joseph, a security researcher, reported the first iOS lock bypass. He was curious after he got a locked iPad from eBay which would have been useless if the bypass was not found.
Apple incorporated the activation lock feature in iOS devices to prevent thieves from reselling stolen iPads and iPhones. If the owner turns on the Find my iPhone feature in iCloud, the device automatically locks itself. It actually helped bring down the numbers of iOS theft in some major cities across the United States.
Joseph bypassed the iOS lock feature using the iPad smart cover and entering long strings of characters in the Wi-Fi network configuration screen, PC World reported. He was able to restore the state of the iPad without having to go through the lock screen again.
The bypass allows users to access the iPad even if they do not know the original Apple ID and password. In the past, hackers were not able to use the stolen iPhones or iPads even if they managed to reset them because it would still ask for the password.
Even the latest version is vulnerable to the said bypass method as it can be used on an iPad Mini 2 with the iOS 10.11 version, Ars Technica reported. Apple has not yet commented on the issue but they could just include the vulnerability in the upcoming iOS 10 updates.
Another researcher named Benjamin Kunz Mejri also reproduced the iOS lock screen bypass on the newer versions. His method involves the same steps but it requires rotating the iPad screen which triggers the crash after the smart cover method has been done.
Apple iOS 10 device owners need not worry as the hackers or thieves would have to physically steal the device from them before they can apply the bypass. It would be wise to be vigilant in using the iOS products when in public places.
Watch the bypass in action in the video below:
