Skip to main content
  1. Home
  2. Mobile

iPhone security flaw puts keychain passwords at risk

By

McAfee released its McAfee’s Q4 Threat Report earlier this week, indicating a sharp rise in mobile-based malware attacks from 2009 to 2010 and forecasting more of the same for the coming year. Users of Apple products haven’t ever really needed to show much concern for security threats as the company’s computers are largely considered to be “virus safe” in many regards. The same is not true of the iPhone however, as a group of German researchers recently discovered.

It took the group of researchers at Fraunhofer Institute Secure Information Technology just six minutes to retrieve private information like stored passwords from the iPhone’s innards without ever cracking its master passcode. Apple products use a password management system called keychain which can be accessed directly in the device’s file system following a jailbreak, with no passcode required. The actual password retrieval process is somewhat complicated and heavy on the tech jargon, but it basically boils down to the fact that the keychain data is both separate from the device’s encrypted passcode and easier to access.

Recommended Videos

“As soon as attackers are in the possession of an iPhone or iPad and have removed the device’s SIM card, they can get a hold of e-mail passwords and access codes to corporate VPNs and WLANs as well,” the researchers said in a statement. “Control of an e-mail account allows the attacker to acquire even more additional passwords: For many web services such as social networks the attacker only has to request a password reset.”

Related: 
Best new movies to stream on Netflix, Hulu, Prime Video, Max (HBO), and more

If you really want to dive in and understand the finer details, the researchers published a paper detailing their findings and uploaded a video of the hack in action to YouTube:

While it’s true that this particular flaw isn’t a malware exploit, any discovered hole in the system could conceivably lead to such a danger. Options are available for remotely wiping all data to those who worry about losing their phone, but this is more the sort of issue that Apple is going to need to address directly, assuming of course that it can be addressed.

Adam Rosenberg
Adam Rosenberg
Former Gaming/Movies Editor
Previously, Adam worked in the games press as a freelance writer and critic for a range of outlets, including Digital Trends…
Topics

Editors’ Recommendations

Will my iPad get iPadOS 26? Here’s every supported model
We've got the full list of iPadOS 26 supported devices - find out if you're getting the new iPad update
iPadOS 26 home screen on an iPad

Apple announced iPadOS 26 at WWDC 2025, and the new iPad update comes with a fresh new look and plenty of features. Apple has ensured there are plenty of iPadOS 26 supported slates, so if you have a relatively new iPad you should get the update this year.

And no, you haven't missed a volley of updates since iPadOS 18 in 2024. Apple has skipped a bunch of numbers, so instead of giving us iPadOS 19 in 2025, we got iPadOS 26 alongside iOS 26, macOS 26, watchOS 26 and tvOS 26.

Read more
Will my iPhone get iOS 26? Here’s every supported model
We've got the full list of iOS 26 supported devices - find out if you're getting the new iPhone update
iOS 26 features on a series of iPhone screens

Apple announced iOS 26 at WWDC 2025, and the new iPhone update comes with a fresh new 'Liquid Glass' look and plenty of features - and there are loads of iOS 26 supported devices, which is great news.

And no, you haven't missed a volley of updates since iOS 18 in 2024. Apple has skipped a bunch of numbers, so instead of giving us iOS 19 in 2025, we got iOS 26 alongside iPadOS 26, macOS 26, watchOS 26 and tvOS 26. In short, Apple's brought its operating system numbering into line. Nice.

Read more
3 big iOS 19 changes that I hope Apple reveals at WWDC 2025
iOS 19 sample logo.

We’re less than two days away from Apple’s big WWDC 2025 keynote, where the company will reveal new versions of each of its software platforms. One of the biggest changes this year is the expected shift from iOS 19 to iOS 26, with new versions of macOS, iPadOS, tvOS, watchOS, and visionOS also set to follow suit. We're also expecting to see the evolution of Apple Health, including a new AI doctor and Health subscription.

iOS 26, if it is to be named that, is expected to introduce one of the biggest evolutions in design for Apple software since the first iPhone was launched. Inspired by visionOS and the Apple Vision Pro, it’s expected to be a monumental redesign, but I hope that Apple also takes the time to make a few improvements.

Read more