Skip to main content
  1. Tech
  2. Gadgets & Tech
  3. Tech Gear

iOS 7.x security flaw allows a thief to bypass Activation Lock

See also

With the new Activation Lock feature tied into Find My iPhone introduced in iOS 7, Apple became the first OEM to build-in technology to disable the ability of a thief to re-activate a stolen iPhone. While that is still true, a newly discovered iOS 7 and 7.1 flaw detailed on Thursday means its relatively easy to hack around that feature (via 9to5Mac).

If Find My iPhone is enabled a miscreant cannot activate an iPhone without the iCloud password for the device. You also cannot disable Find My iPhone unless you have the password for that account. Sounds secure, doesn't it? However, as the video below shows, there is a way around it.

To do the hack, you need to go into Settings, and then into the iCloud settings panel. At that point, you have to tap both the Delete Account button and the switch to disable Find My iPhone simultaneously. This is the hardest part of the process, and may take many tries to get "just right." When prompted for a password, you hold down the power button and shut down the phone.

If a thief then goes back into iCloud settings, he will find he is able to remove the iCloud account without needing to enter a password.

At that point, he can plug the phone into iTunes and restore -- and reactivate it -- without issue.

This is just an example of how securing an iPhone with a PIN or TouchID is important.

In addition, if the thief is a little too trigger-happy, and attempts to reset and then re-activate the phone, he won't be able to get into the settings to perform this.

We expect Apple will address this ASAP, although they have not commented on it publicly.

Advertisement

Don't Miss

  • Crew
    'The Crew' preview: Ubisoft has on its hands the 'Destiny' of racing games
    Games Preview
  • Cell phone
    A bill legalizing unlocking phones has passed Congress and is expected to be signed into law
    Video
    Tech Buzz
  • Crew
    'The Crew' exclusive: Details on in-game servers, leveling up and online play
    Games Interview
  • Comic Con
    See 10 defining moments from the 2014 San Diego Comic-Con
    Camera
    10 Photos
  • Unity Exclusive
    'Assassin's Creed Unity' exclusive: Tell the world, 'I'm coming home'
    Camera
    Games Interview
  • Typing
    Is your brokerage account safe from the attacks of cyber thieves?
    Video
    Headlines

Related Videos:

  • iPhones run spreadsheets well but which spreadsheet app is best may depend on what you need to accomplish.
    <div class="video-info" data-id="517818312" data-param-name="playList" data-provider="5min" data-url="http://pshared.5min.com/Scripts/PlayerSeed.js?sid=1304&width=480&height=401&playList=517818312&autoStart=true"></div>
  • Cortana on Windows Phone 8.1
    <iframe width="560" height="315" src="//www.youtube.com/embed/w0pjD4qpIpg?VQ=HD720&amp;allowfullscreen=true&amp;autoplay=1"></iframe>
  • Nokia Lumia 1520
    <iframe width="560" height="315" src="//www.youtube.com/embed/G5EXr5RbSTc?VQ=HD720&amp;allowfullscreen=true&amp;autoplay=1"></iframe>