A Huge security flaw found in iOS 7.1



An gyptian programmer Sherif Hashim discovered a flaw that allows anyone access user's contact list even when the iPhone is locked. The issue is confirmed to be present even in Apple’s latest iOS 7.1.1.

Hashim posted a video to illustrate the flaw. He shows that the device is locked and then attempts unsuccessfully to access the handset’s contact list using Siri. After canceling his initial command, he speaks a different command, Call ,to initiate a voice call while the handset is locked. Siri then asks, With whom would you like to speak? and presents Hashim with the phone’s full contact list even though the device is Still Locked.

To fix this flaw go tSettings > Passcode and disable Siri under the “Allow access when locked”.