Differences

This shows you the differences between two versions of the page.

--- fuss:ios [2022/04/19 08:28] – external edit 127.0.0.1
+++ fuss:ios [2022/08/22 11:16] (current) – [Stealing the Phone] office
@@ Line 398: / Line 398: @@
 sed -i'' 's/\x00\x30\x93\xe4/\x00\x30\x93\xe5/g;s/\x00\x30\xd3\xe4/\x00\x30\xd3\xe5/g;'
 </code>
+====== Exploiting the iPhone 13 without Unlocking via Siri ======
+iOS at version ''15.3.1'' allows Siri to be activated from the lock screen without having to unlock the phone. Siri can then be leveraged in order to perform various actions. Whilst some actions will make Siri require the user to unlock their phone, some other actions are still allowed without having to unlock the phone.
+In order to activate Siri from the lock screen, the side button can be held down for three seconds.
+Here is a list of potential attack vectors that have been discovered to be working on iOS at version ''15.3.1''.
+===== Stealing the Phone =====
+Siri can be told:
+  * ''turn wifi off''
+  * ''turn mobile data off''
+or, for short:
+  * ''turn airplane mode on'' (which additionally disables any location services)
+such that the "Find My Phone" iCloud application on Apple servers at ''https://www.icloud.com/find/'' cannot find the phone anymore.
+This would allow someone that intends to steal the phone, to effectively turn off any Internet location such that the phone cannot be tracked anymore.
+===== Changing Alarms and Muting Volume =====
+Siri can be told to set an alarm for a certain point in time, ie:
+  * ''set alarm for 2pm''
+as well as changing the volume:
+  * ''set volume to maximum''
+directly from the lock screen without having to unlock the phone.
+Conversely:
+  * ''mute volume''
+such that any calls or appointments will be missed.