In IOS6 Apple have added the ability for Siri to interact with Twitter and Facebook from a locked screen. As handy as this can to update your friends on the move it potentially could be used by a non-authorized user to order Siri to send tweets and Facebook posts from your account.
TiroSec tested this scenario out and was able to send a test tweet from a locked phone, as shown below:
If you don’t want Siri to conduct these sorts of activities while the device is locked, you have to disable Siri in the Passcode Lock settings as shown below:
Protect your companies confidential data with Tiro Security, a leading provider of IT Security jobs located in the heart of Silicon Beach in Santa Monica, CA.
Posted in News