A vulnerability has been discovered in the Apple iOS VoiceOver feature which can be exploited by attackers to gain access to a victim's photos. As reported by Apple Insider, the bug, a lock screen bypass made possible via the VoiceOver screen reader, relies on an attacker having physical access to the target device. Revealed by iOS hacker Jose Rodriguez and subsequently demonstrated in the YouTube video below, the attack chain begins with the attacker calling the victim's phone. This can be made possible by asking the Siri voice assistant to read out the phone number digit by digit, should the attacker not possess this information. Once a call has been made, the attacker must then tap on "Answer by SMS," and then select the "personalize/custom" option.