Rumors forums are
reporting that Apple's iOS 4.1, the current software running on
the iPhone, contains a security loophole that allows anyone who knows
the easy trick to bypass the passcode entry screen and gain access to
the Phone app.
how it works: At the passcode entry screen, select "Emergency
Call." Input any number, hit "Send" and the phone's
sleep button in quick, almost simultaneous, succession. You will now
have full access to the Phone app, which includes Contacts, Call
History, Voicemail, and the Dialer. If you hit "Share Contact"
and the camera button, you will also gain access to the Photos app.
Simply hitting "Share Contact" or "Email" will
allow you to send an e-mail or MMS, Boy
video). And that's about all you can do.
Unofficial Apple Weblog,
the loophole doesn't exist on the beta version of iOS 4.2, so it's
possible that Apple is already aware of the problem. TUAW also
makes the common sense point that the best way to ensure the security
of your iPhone (or any other device that may contain sensitive
information) is to prevent anyone from gaining physical access.
again, iPhone users may not need to worry about someone happening
upon their lascivious text messages in the near future, if Apple does
indeed implement its
recent patent that prevents "sexting".
quote: What is the big deal here? What do you expect when you, willingly or erroneously, handover physical custody of your phone to someone else? It’s not like they gained access to the data remotely.Remember the Android Wall paper App that sent detailed contacts data to China from Millions of unsuspecting Android phone users (July-2010)? That was a SERIOUS SECURITY BLUNDER than accessing call logs locally.Here is DT's own article on the subject ---(http://www.dailytech.com/Android+Wallpaper+App+Sto...The spy Wallpaper was downloaded by "between 1.1 million and 4.6 million” .And despite that, 47 percent of Android apps STILL collects some sort of user information (without their knowledge).
quote: Apple's actions thus far have indicated that it wouldn't give two ish1ts about its customers' security
quote: Security isn't on the top of that list.