Notebookcheck Logo

New bug in iOS 13.3 allows kids to circumvent Communication Limits parental controls

The Communication Limits feature in iOS 13.3 can easily be bypassed. (Image via Apple)
The Communication Limits feature in iOS 13.3 can easily be bypassed. (Image via Apple)
A bug in iOS 13.3 allows users to easily circumvent the Communication Limits feature. While Communication Limits is supposed to block users (specifically children) from communicating with or adding unknown or unapproved numbers, simply setting up the phone to not sync to iCloud will bypass the feature and allow users to add new numbers without verification.
Apple Cyberlaw Fail iOS iPhone Security Software

Another week, another iOS update, and another round of software bugs. However, a new bug allows users, including children, to easily circumvent parental controls set up in the Communication Limits feature. 

As reported by CNBC, iOS 13.3 includes a new feature called Communication Limits. The feature is supposed to allow parents to block the phone from contacting people not already listed in the device’s contacts library. Parents can also block the addition of new contacts unless a PIN is entered. 

However, there’s a fairly simple way to bypass the feature: just don’t sync contacts to iCloud. 

If the phone is set up to either sync contacts to a third-party service (like Gmail) or only store contacts locally on the device, users can then add unknown or unapproved numbers that send text messages to the phone. Once the number is added to the contacts library, the user can then call, text, or FaceTime that number without any request for verification. 

CNBC also discovered that users can bypass Communication Limits by using an Apple Watch. Telling Siri to call or text a number through a synced Apple Watch completely ignores the contact list check.

Apple responded to CNBC, saying:

This issue only occurs on devices set up with a non-standard configuration, and a workaround is available. We’re working on a complete fix and will release it in an upcoming software update.

In the meantime, parents that want to shut down the bypass can manually set their child’s phone to sync contacts to iCloud by going into the “Contacts” page in Settings. Changing the default account to sync to iCloud should prevent children from circumventing Communication Limits. 

Source(s)

CNBC

Related Articles

iOS 13.7 includes a built-in tool for tracking exposure to COVID-19, though you wouldn't know it from the update description. (Image via iOS)
Built-in COVID-19 tracking tool comes to iPhones with iOS 13.7 09/02/2020
Tread lightly before opening any texts on your iOS device
A string of text with Sindhi characters is crashing iOS devices worldwide 04/24/2020
Apple will let users set third-party apps as the default.
Apple might let users set third-party apps as defaults in a future version of iOS 02/21/2020
According to a new rumor, every phone that can run iOS 13 will be able to run iOS 14. (Image via Apple)
Rumor claims iOS 14 will still support iPhone SE, iPhone 6S 01/26/2020
Image via Microsoft
Microsoft extends support for Windows 10 Mobile to January 14, 2020 12/16/2019
Image via Ring
Several Ring home cameras breached, recycled passwords likely to blame 12/16/2019
Even with location services turned off, your iPhone 11 still tracks where you are. (Image: own)
Apple openly admits to iPhone 11 location tracking, offers reason 12/06/2019
The iPhone 11 Pro has hidden services that access location data even when all apps and services have location permissions disabled. (Source: Apple)
The iPhone 11 Pro requests user location even when app and service permissions are disabled 12/05/2019
The data breach affected 1.2 billion people. (Image Source: Forbes)
Personal information of 1.2 billion people leaked in massive data breach 11/26/2019
Report a verifiable Titan M hack, get up to $1 million. (Source: F3News)
Google now offers a US$1 million bounty for Titan M chipset vulnerabilities 11/23/2019
OnePlus has admitted that a third party may have made off with its customer data. (Source: DigitalTrends)
OnePlus reports a data security breach that affects its customers 11/23/2019
Lenovo busted for secretly paying cybersecurity
Lenovo busted for secretly paying cybersecurity "influencers" to promote ThinkShield 11/21/2019
Google Camera could have been used for some extremely shady hacking activities. (Source: XDA)
The cameras on "hundreds of millions" of Android phones could have been hijacked 11/19/2019
Brave Browser finally exits beta; version 1.0 now available
Brave Browser finally exits beta; version 1.0 now available 11/14/2019
The daily average use of DuckDuckGo since 2010 has grown exponentially. Image via DuckDuckGo
DuckDuckGo, the privacy-focused search engine, hits 50 million daily searches 11/06/2019
The memory log from one of the
Hackers target legacy Windows PCs to mine crypto via BlueKeep exploit 11/06/2019
A sizeable proportion of eligible consumers are still wary about smart-home products. (Source: Parks Associates)
Research finds privacy concerns put US consumers off buying smart home products 10/30/2019
Smartwatches are increasingly popular, but could be more secure. (Source: TechRadar)
Nok Nok Labs claims that its new SDK can make smartwatches more secure and better equipped to take over from phones 10/27/2019
Image via Bleeping Computer
UK banks remove mobile bank services and apps from Samsung Galaxy S10 10/24/2019
Image via CNET
Samsung releases update to patch fingerprint scanner flaw 10/23/2019
Read all 1 comments / answer
static version load dynamic
Loading Comments
Comment on this article
Please share our article, every link counts!
> Expert Reviews and News on Laptops, Smartphones and Tech Innovations > News > News Archive > Newsarchive 2019 12 > New bug in iOS 13.3 allows kids to circumvent Communication Limits parental controls
Sam Medley, 2019-12-14 (Update: 2019-12-14)