Apple’s personal assistant, Siri, poses a security and privacy risk to iOS device owners, according to Trend Micro, which specializes in IT security.
The company’s researchers say that, in only 30 seconds, anyone can use voice recognition to access data on a device, even without a passcode. Once someone has physical access to a device, voice recognition can be used to give commands, including those that provide access to names, numbers, calendar entries and more.
“Hackers can now invade your physical reality,” says Tom Kellermann, chief cybersecurity officer, Trend Micro. “Once inside a device, they are ever present and experiencing your life with you.”
Commands such as “what’s my location” or “call [name]” could have significant ramifications to a user’s privacy, he adds. Trend Micro has alerted Apple of this vulnerability, but until steps are put in place to prevent this abuse, users can disable Siri on the lock screen by going to Settings > Touch ID & Passcode > Siri.