Well THAT didn't take long at all, did it?
Just days after the release of Apple's new operating system -- which Apple is touting as having (among other things) enhanced security features -- websites are reporting the discovery of a security-related bug. In a video released online, hackers demonstrated how accessing the Control Center feature from the lock screen and executing a specific series of commands will allow someone to access other applications (such as email) which are supposedly inaccessible when the phone is locked. While Apple says it's working on a fix, the simplest solution for the nonce is to change the Control Center settings so that you cannot access Control Center on the Lock screen. This is easily doable from the Settings screen (though feel free to ping me directly if you need a walk-through).
While some have dismissed the relevance of this bug, I like security controls to work. I remain cautious about what I do and do not do online, but given the ubiquitous nature of technology it is nigh impossible to avoid utilizing wireless devices to store, process, or transmit some type of data. In this context, dismissing security flaws as hyperbole is short sighted and naive. Yes, convenience comes with risk and even security geeks like me understand that. I wonder, though, how much Apple spent on the Security Testing and Evaluation (ST&E) of its operating system as compared to, say, redisigning its icons. Would shifting 1% of that spend toward ST&E have made a difference? We'll never know. What we do know is that Apple is now spending unplanned dollars fixing flaws and responding to public embarrassment instead of innovating. Not a good position for a technology company to be in.
Here's hoping Apple takes a much harder look at its iOS and sends a fast update before the next security bug is discovered. Oh, wait...too late...the next bug has already been found.
Be aware...
No comments:
Post a Comment