You are here: Home » Current Affairs » News » National
Business Standard

Kerala-based security researcher bypasses Apple's iPad activation lock

Joseph bypassed activation lock in a locked iPad by discovering a weakness in the device setup process running iOS 10.1

IANS  |  New York 

Kerala-based security researcher bypasses Apple's iPad activation lock

Hemanth Joseph, a Kerala-based security researcher, has identified a bug running in iOS 10.1 version of Apple's operating system that allowed him to bypass the activation lock on an iPad.

The activation lock in Apple's iPhone or iPad is hard for someone other than owner of the device to hack and set it up as a new device.

Joseph bypassed activation lock in a locked iPad by discovering a weakness in the device setup process running iOS 10.1, Forbes reported on Friday.

When Joseph was asked to select a Wi-Fi network, he chose 'other network' and selected WPA2-enterprise as the type of network to connect to, that gave him three input fields to fill -- name, username and password.

Upon testing, he came to know that there is no character restriction in those fields and he typed thousands of characters than iOS can handle, expecting that it would cause the software to crash.

This caused the iPad to freeze and then he locked it by closing Apple's magnetic Smart Cover over the screen. After opening the cover, the device was at the same screen, but as few seconds passed by, it crashed to iOS home screen.

This made Joseph bypassed the activation lock and to have full access to the iPad.

The bug discovered by Joseph was reportedly fixed in an iOS update last month.

According to Joseph's website, he is currently working as information security researcher at the firm Slash Secure and also serving as commander at Police Cyberdome.

He is founder of India's first open security community for students called 0SecCon (www.0SecCon.com).

Joseph has been listed Google's Hall of fame and received a bounty of $7500 for reporting a critical vulnerability in Google Cloud Platform.

Earlier, researchers at US-based Vulnerability Lab discovered the iOS 10.1.1 bug. Like Joseph, the team began by overloading the Wi-Fi setup fields and employed a smart cover. Just like in Joseph's iPad scenario, the home screen appeared for an instant and then it's gone.

 

RECOMMENDED FOR YOU

Kerala-based security researcher bypasses Apple's iPad activation lock

Joseph bypassed activation lock in a locked iPad by discovering a weakness in the device setup process running iOS 10.1

Hemanth Joseph, a Kerala-based security researcher, has identified a bug running in iOS 10.1 version of Apple's operating system that allowed him to bypass the activation lock on an iPad.

Hemanth Joseph, a Kerala-based security researcher, has identified a bug running in iOS 10.1 version of Apple's operating system that allowed him to bypass the activation lock on an iPad.

The activation lock in Apple's iPhone or iPad is hard for someone other than owner of the device to hack and set it up as a new device.

Joseph bypassed activation lock in a locked iPad by discovering a weakness in the device setup process running iOS 10.1, Forbes reported on Friday.

When Joseph was asked to select a Wi-Fi network, he chose 'other network' and selected WPA2-enterprise as the type of network to connect to, that gave him three input fields to fill -- name, username and password.

Upon testing, he came to know that there is no character restriction in those fields and he typed thousands of characters than iOS can handle, expecting that it would cause the software to crash.

This caused the iPad to freeze and then he locked it by closing Apple's magnetic Smart Cover over the screen. After opening the cover, the device was at the same screen, but as few seconds passed by, it crashed to iOS home screen.

This made Joseph bypassed the activation lock and to have full access to the iPad.

The bug discovered by Joseph was reportedly fixed in an iOS update last month.

According to Joseph's website, he is currently working as information security researcher at the firm Slash Secure and also serving as commander at Police Cyberdome.

He is founder of India's first open security community for students called 0SecCon (www.0SecCon.com).

Joseph has been listed Google's Hall of fame and received a bounty of $7500 for reporting a critical vulnerability in Google Cloud Platform.

Earlier, researchers at US-based Vulnerability Lab discovered the iOS 10.1.1 bug. Like Joseph, the team began by overloading the Wi-Fi setup fields and employed a smart cover. Just like in Joseph's iPad scenario, the home screen appeared for an instant and then it's gone.

 

image
Business Standard
177 22

Kerala-based security researcher bypasses Apple's iPad activation lock

Joseph bypassed activation lock in a locked iPad by discovering a weakness in the device setup process running iOS 10.1

Hemanth Joseph, a Kerala-based security researcher, has identified a bug running in iOS 10.1 version of Apple's operating system that allowed him to bypass the activation lock on an iPad.

The activation lock in Apple's iPhone or iPad is hard for someone other than owner of the device to hack and set it up as a new device.

Joseph bypassed activation lock in a locked iPad by discovering a weakness in the device setup process running iOS 10.1, Forbes reported on Friday.

When Joseph was asked to select a Wi-Fi network, he chose 'other network' and selected WPA2-enterprise as the type of network to connect to, that gave him three input fields to fill -- name, username and password.

Upon testing, he came to know that there is no character restriction in those fields and he typed thousands of characters than iOS can handle, expecting that it would cause the software to crash.

This caused the iPad to freeze and then he locked it by closing Apple's magnetic Smart Cover over the screen. After opening the cover, the device was at the same screen, but as few seconds passed by, it crashed to iOS home screen.

This made Joseph bypassed the activation lock and to have full access to the iPad.

The bug discovered by Joseph was reportedly fixed in an iOS update last month.

According to Joseph's website, he is currently working as information security researcher at the firm Slash Secure and also serving as commander at Police Cyberdome.

He is founder of India's first open security community for students called 0SecCon (www.0SecCon.com).

Joseph has been listed Google's Hall of fame and received a bounty of $7500 for reporting a critical vulnerability in Google Cloud Platform.

Earlier, researchers at US-based Vulnerability Lab discovered the iOS 10.1.1 bug. Like Joseph, the team began by overloading the Wi-Fi setup fields and employed a smart cover. Just like in Joseph's iPad scenario, the home screen appeared for an instant and then it's gone.

 

image
Business Standard
177 22

Upgrade To Premium Services

Welcome User

Business Standard is happy to inform you of the launch of "Business Standard Premium Services"

As a premium subscriber you get an across device unfettered access to a range of services which include:

  • Access Exclusive content - articles, features & opinion pieces
  • Weekly Industry/Genre specific newsletters - Choose multiple industries/genres
  • Access to 17 plus years of content archives
  • Set Stock price alerts for your portfolio and watch list and get them delivered to your e-mail box
  • End of day news alerts on 5 companies (via email)
  • NEW: Get seamless access to WSJ.com at a great price. No additional sign-up required.
 

Premium Services

In Partnership with

 

Dear Guest,

 

Welcome to the premium services of Business Standard brought to you courtesy FIS.
Kindly visit the Manage my subscription page to discover the benefits of this programme.

Enjoy Reading!
Team Business Standard