Venmo flaw allowed attackers to use Siri to drain accounts

By

money
You might wanna check your account.
Photo: Jim Merithew/Cult of Mac

A critical flaw with PayPal-owned Venmo left iPhone users’ accounts exposed to a lethal account that could have allowed attackers to steal $2,999.99 in just two minutes.

The Venmo security flaw was discovered by Salesforce security engineer Martin Vigo who found that Siri can be used on locked iPhones to drain an account just by sending a few text messages.

Check out the hack in action:

Want to see if your iPhone’s been hacked? There’s an app for that

hacking
You might think your iPhone's safe, but are you sure?
Photo: Ste Smith/Cult of Mac

You could be using a jailbroken iPhone containing malicious software that spies on your every move and you wouldn’t even know it.

It might be unlikely, but it happens, and you should be aware of it — especially if you buy used devices. Fortunately, you can now get a simple app that tells you in an instant whether your iPhone or iPad has been hacked.