updated 07:05 pm EDT, Thu August 28, 2008
iPhone security fix coming
Confirming the forthcoming iPhone 2.0x software update, Apple on Thursday promised it would deliver an security update for the recently publicized iPhone security flaw that could allow users to access some password-locked iPhones. First noted earlier this week, a simple series of keystrokes -- first the emergency button and then double tapping the home button --- could allow users in some cases to access private information on the device despite the screen lock.
“The minor iPhone security issue which surfaced this week is fixed in a software update which will be released in September,” Apple representative, Jennifer Bowcock told Macworld.
The flaw allows access to a locked iPhone by pressing the emergency call button at the unlock screen, followed by two taps on the home button -- taking users to the iPhone’s private ‘favorites’ page.
"If the owner of the phone has favorite entries in their address book containing URLs, e-mail addresses or mobile phone numbers, then those entries can be used to launch the browser, mail application or SMS (Short Message Service) software and gain access to private Web favorites, e-mail messages and text messages stored in the phone, again without entering the unlock code," the publication noted.
Until the software update is released, Apple said that users can protect their phone by setting the device so that double-clicking the home button will take users directly to the (locked) home screen