Apple’s iOS 13 update may not be available yet, but it already has a new exploit to deal with. Jose Rodriguez shared details via a YouTube video in which he laid out exactly what the exploit looks like. But the bad news is that someone could gain access to your contacts even if your iPhone is locked.

As the video shows, the whole process isn’t particularly easy to do and does take a couple of minutes. But if you have unfettered access to an iPhone running iOS 13 it’s absolutely something you can do.

It essentially involves the target iPhone receiving a call or FaceTime call and then being used to activate voiceover via Siri. The same feature is then disabled and at that point the attacker can access contacts. Those contacts include everything, including emails, addresses, phone numbers, and more.

While you can’t access photos, the process is very similar to an iOS 12 issue that allowed contacts and photos to be accessed. Amazingly, it was Rodrigues who found that exploit last year, too.

Rodrigues told Apple about the problem via the Apple beta feedback program and it sounds like the flaw should be fixed when iOS 13.1 lands on September 30th. For now though, anyone who picks up a new iPhone or upgrades to iOS 13 on September 19th will have this flaw to deal with. Not that we imagine too many people will be trying to exploit it.

You may also like to check out:

You can follow us on Twitter, or Instagram, and even like our Facebook page to keep yourself updated on all the latest from Microsoft, Google, Apple, and the Web.

Related Stories