![It Only Takes Six Minutes to Reveal Your iPhone Passwords [Video]](/images/news/13854/47714/47714-64.png "It Only Takes Six Minutes to Reveal Your iPhone Passwords [Video]")
It Only Takes Six Minutes to Reveal Your iPhone Passwords [Video]
Posted February 10, 2011 at 12:33pm by
Shalom Levytam
Researchers at the German Fraunhofer Institute for Secure Information Technology have demonstrated that it only takes six minutes to reveal the passwords stored in your iPhone keychain, reports PCWorld.
The researchers jailbreak the device then install SSH. They then copy a keychain access script to the phone. The script uses system functions to access entries in the keychain and outputs the details to the attacker.
The attack works because the cryptographic key on current iOS devices is based on material available within the device and is independent of the passcode, the researchers said. This means attackers with access to the phone can create the key from the phone in their possession without having to hack the encrypted and secret passcode.
"As soon as attackers are in the possession of an iPhone or iPad and have removed the device's SIM card, they can get a hold of e-mail passwords and access codes to corporate VPNs and WLANs as well," said the researchers in a statement. "Control of an e-mail account allows the attacker to acquire even more additional passwords: For many web services such as social networks the attacker only has to request a password reset."
This type of attack could be prevented by remotely wiping a lost or stolen device using Find My iPhone.
You can see the attack being demonstrated in the video below...
Read More [via PCWorld]
The researchers jailbreak the device then install SSH. They then copy a keychain access script to the phone. The script uses system functions to access entries in the keychain and outputs the details to the attacker.
The attack works because the cryptographic key on current iOS devices is based on material available within the device and is independent of the passcode, the researchers said. This means attackers with access to the phone can create the key from the phone in their possession without having to hack the encrypted and secret passcode.
"As soon as attackers are in the possession of an iPhone or iPad and have removed the device's SIM card, they can get a hold of e-mail passwords and access codes to corporate VPNs and WLANs as well," said the researchers in a statement. "Control of an e-mail account allows the attacker to acquire even more additional passwords: For many web services such as social networks the attacker only has to request a password reset."
This type of attack could be prevented by remotely wiping a lost or stolen device using Find My iPhone.
You can see the attack being demonstrated in the video below...
Read More [via PCWorld]
![Apple Releases macOS Tahoe 26.6 Beta to Developers [Download]](/images/news/100968/100968/100968-160.jpg "Apple Releases macOS Tahoe 26.6 Beta to Developers [Download]")
![Apple Seeds First Betas of watchOS 26.6, tvOS 26.6, and visionOS 26.6 to Developers [Download]](/images/news/100966/100966/100966-160.jpg "Apple Seeds First Betas of watchOS 26.6, tvOS 26.6, and visionOS 26.6 to Developers [Download]")
![Apple Releases iOS 26.6 Beta and iPadOS 26.6 Beta to Developers [Download]](/images/news/100963/100963/100963-160.jpg "Apple Releases iOS 26.6 Beta and iPadOS 26.6 Beta to Developers [Download]")
![Apple's Foldable iPhone Facing Production Ramp-Up Issues Ahead of Launch [Rumor]](/images/news/100962/100962/100962-160.jpg "Apple's Foldable iPhone Facing Production Ramp-Up Issues Ahead of Launch [Rumor]")
![Ferrari Unveils 'Luce,' Its First EV Designed in Collaboration With Jony Ive [Video]](/images/news/100961/100961/100961-160.jpg "Ferrari Unveils 'Luce,' Its First EV Designed in Collaboration With Jony Ive [Video]")
![New 13-Inch M5 MacBook Air Hits All-Time Low Price of $899.99 [Deal]](/images/news/100969/100969/100969-160.jpg "New 13-Inch M5 MacBook Air Hits All-Time Low Price of $899.99 [Deal]")
![AirPods Pro 3 Drop to $199 Ahead of Memorial Day [Deal]](/images/news/100935/100935/100935-160.jpg "AirPods Pro 3 Drop to $199 Ahead of Memorial Day [Deal]")
![15-Inch M5 MacBook Air Drops to New All-Time Low at $1,099.99 [Deal]](/images/news/100930/100930/100930-160.jpg "15-Inch M5 MacBook Air Drops to New All-Time Low at $1,099.99 [Deal]")
![Apple's 16-Inch M5 Pro MacBook Pro Drops to a New Record Low of $2,449.99 [Deal]](/images/news/100873/100873/100873-160.jpg "Apple's 16-Inch M5 Pro MacBook Pro Drops to a New Record Low of $2,449.99 [Deal]")
![Apple 14-inch M5 Pro MacBook Pro Hits New All-Time Low at $1,983.94 [Deal]](/images/news/100736/100736/100736-160.jpg "Apple 14-inch M5 Pro MacBook Pro Hits New All-Time Low at $1,983.94 [Deal]")
