A flaw in iOS 13 can expose your contact details, and Apple’s known about the problem since July

Sep 19, 2019, 5:07 PM
AP Photo/Marcio Jose Sanchez, File...
AP Photo/Marcio Jose Sanchez, File

(CNN) — A flaw in iOS 13, the new iPhone operating system Apple released Thursday, exposes contact details stored in iPhones without requiring a passcode or biometric identification. And Apple has known about the flaw since July, a person who reported the bug to Apple told CNN Business.

A hacker would need physical access to a target’s phone to complete the hack — but once it is in their possession they could bypass Apple’s standard security features like facial I.D. Once they have done so, they can access the phone’s address book and see information for contacts stored on the phone, as well as indications of the most recent contacts with whom the phone’s owner had been communicating.

Jose Rodriguez, a cybersecurity enthusiast, living in the Canary Islands, contacted Apple on July 3rd suggesting that he had found a “passcode bypass” and asked if his findings would be eligible for an Apple Security Bounty — a program that rewards security researchers who bring bugs to Apple’s attention.

Apple promptly followed-up on Rodriguez’s tip and company staff had several calls with the researcher during which he walked them through the vulnerability on a beta version of the software, Rodriguez said.

Rodriguez provided copies of the emails and phone records of his correspondences with Apple to CNN Business.

Suspecting Apple might not fix the flaw before releasing the new operating system to its customers, Rodriguez last week went public with his findings.

CNN Business was able to replicate the exploit on Tuesday on iPhones that had updated to the official version of iOS 13.

Apple confirmed that the exploit Rodriguez identified would be fixed in the next version of the operating system, iOS 13.1, which is due to be released on September 24th.

The company previously moved the release date for that update forward from September 30th. The company declined to say if Rodriguez’s discovery had prompted the early release.

The-CNN-Wire
™ & © 2019 Cable News Network, Inc., a Time Warner Company. All rights reserved.

We want to hear from you.

Have a story idea or tip? Send it to the KSL NewsRadio team here.

Today’s Top Stories

Lehi City officials have closed a portion of westbound 1500 North to repair a large sinkhole. On it...
Simone Seikaly

Large sinkhole shuts down portion of westbound1500 North in Lehi

Lehi City officials said the sinkhole formed on 1500 North due to a water leak.
15 hours ago
Utah legislators stand on the steps of the Capitol as they join hundreds gathered in support of tra...
Lindsay Aerts

Utah House votes to pass transgender-related surgery ban

The Utah House has advanced the bill that bans transgender-related surgeries on minors and pauses the treatment of hormone blockers.
15 hours ago
Five former Memphis police officers who were fired for their actions during the arrest of Tyre Nich...
Eric Levenson, Melissa Alonso and Chris Boyette, CNN

Five former Memphis police officers indicted on charges of murder

The former officers were each charged with second-degree murder and aggravated assault among other charges.
15 hours ago
FILE: Taylorsville High School is pictured on Thursday, Oct. 8, 2020....
Simone Seikaly

Lockdown lifted at Taylorsville High, no injuries after shots fired

Shots were reportedly fired in the parking lot of Taylorsville High School on Thursday afternoon, leading to lockdown and lockout procedures.
15 hours ago
UDOT traffic cam around 11:50 a.m.
(Utah Department of Traffic)...
Elizabeth Weiler

Elk stopping traffic on Foothill Drive near I-80

SALT LAKE CITY — Westbound Interstate 80 is experiencing delays of up to 18 minutes because a large herd of elk is attempting to cross into the foothills.  On Thursday afternoon, Salt Lake City Police tweeted that they, along with the Utah HighwayPatrol, were helping the Division of Wildlife Resources wrangle this elk herd. Our […]
15 hours ago
A new service called Cottonwood Connect could address parking problems at the ski resorts in Big an...
Kate Davis and Simone Seikaly

Cottonwood Connect offers a new way to get up Cottonwood Canyons

The goal is to fill gaps left when UTA limited ski bus service. The shuttle will run Thursday through Sunday through mid-April.
15 hours ago

Sponsored Articles

Kid holding a cisco fish at winterfest...
Bear Lake Convention and Visitors Bureau

Get Ready for Fun at the 2023 Bear Lake Monster Winterfest

The Bear Lake Monster Winterfest is an annual weekend event jam-packed full of fun activities the whole family can enjoy. This year the event will be held from January 27-29 at the Utah Bear Lake State Park Marina and Sunrise Resort and Event Center in Garden City, Utah. 
happy friends with sparklers at christmas dinner...
Macey's

15 Easy Christmas Dinner Ideas

We’ve scoured the web for you and narrowed down a few of our favorite Christmas dinner ideas to make your planning easy. Choose from the dishes we’ve highlighted to plan your meal or start brainstorming your own meal plan a couple of weeks before to make sure you have time to shop and prepare.
Spicy Homemade Loaded Taters Tots...
Macey's

5 Game Day Snacks for the Whole Family (with recipes!)

Try these game day snacks to make watching football at home with your family feel like a special occasion. 
Happy joyful smiling casual satisfied woman learning and communicates in sign language online using...
Sorenson

The Best Tools for Deaf and Hard-of-Hearing Workplace Success

Here are some of the best resources to make your workplace work better for Deaf and hard-of-hearing employees.
Team supporters celebrating at a tailgate party...
Macey's

8 Delicious Tailgate Foods That Require Zero Prep Work

In a hurry? These 8 tailgate foods take zero prep work, so you can fuel up and get back to what matters most: getting hyped for your favorite
christmas decorations candles in glass jars with fir on a old wooden table...
Western Nut Company

12 Mason Jar Gift Ideas for the 12 Days of Christmas [with recipes!]

There are so many clever mason jar gift ideas to give something thoughtful to your neighbors or friends. Read our 12 ideas to make your own!
A flaw in iOS 13 can expose your contact details, and Apple’s known about the problem since July