Sophos: Siri leaves your iPhone 4S vulnerable to other people’s voice commands – even when it’s locked

SHARE

Siri, Cupertino’s latest and greatest innovation since they decided to stick i in everything they make undoubtedly makes lives easier for folks. It (she?) may also leave your iPhone 4S vulnerable to other people’s voice commands, even when you’ve managed to lock the phone. Graham Cluley, a senior technology consultant at Sophos has discovered that Siri is set to accept voice commands by default even if you’ve already locked the device.

Graham writes on the company’s Naked Security blog that he managed to write an email and a text message with a locked device solely through Siri. “They could have chosen to implement Siri securely, but instead they decided to default to a mode which is more about impressing your buddies than securing your calendar and email system”, he writes.

There’s an easy way to fix this though – you just need to go to Settings/General/Passcode Lock on your iPhone 4S, and make sure that the “Siri” option is set to “Off”.

Source: Sophos