Apple's devices provide a device lock feature which allows to lock out the device even after it's been lost. The remote lock however seems to be far from perfect, because of a bug in device lock activation.
According to a video uploaded to YouTube this bug can be exploted so that the activation will be bypassed. Normally the device can be unlocked only with Apple ID and password.
To unlock the device user can join a WiFi network of choice. By entering network name and other fields that exceed a certain limit the software crashes and for a split second shows the home screen. If you are quick you can enter the device by pressing the power button or accessing Siri.
Both iOS 10.1 and 10.1.1 are vulnerable with this type of exploit, Security Week reports.
Written by: Matti Vähäkainu @ 3 Dec 2016 16:03