Talk about news, today we got word that there is a new iOS4.1 exploit that can allow unauthorized access to your iPhone; allowing just about anyone to make calls and access your iPhone’s contacts. The exploit is even easier to carry out than you might image. All someone needs to do is lock your iPhone by entering a wrong passcode,  tap the  Emergency Call button and then enter a non-emergency number such as ###. Next tap the call button and immediately hit the lock button. This process will actually  open up the Phone.app where the unauthorized user can see all your contacts, call any number, etc. While this may not be a serious concern (as generally you have your iPhone with you), it is still a security flaw that will need to be fixed by Apple.

As this exploit is present in the iOS4.1 firmware, this will probably force Apple to release an updated firmware (iOS4.1.1), before the scheduled iOS4.2 firmware is released. Apple will most likely also patch the untethered exploit, discovered by Comex. If this is the case, it is important that you do not hit that update button! It is also important for you to save your SHSH blobs, please do this now…