iPhone Cracking Software Retrieves Passwords

A Russian password-breaking company have released software it claims can retrieve passwords stored on the latest version of the Apple iPhone. The technique allegedly does not modify the device or any of the data stored on the device.

ElcomSoft of Moscow claims the iPhone Password Breaker software can recover encrypted keychains used by the iPhone 4 to store passwords used for email, third-party software and websites. The software can  be used by forensic investigators to recover data without changing the content of the phone, the company says.

“In Apple iPhone devices, passwords to email accounts, Web sites, and certain third-party software are stored securely in keychains that are encrypted with hardware keys unique to each individual device,” according to a company statement. “Prior to the release of iOS 4, keychains remained encrypted with a device-specific key even when exported to an off-line backup file. With iOS 4 this is not necessarily the case. With the release of Apple’s new OS, iOS 4, the keychains can now be stored in device backups encrypted only withbackup’s master password. Knowing the password protecting the off-line backup, it is now possible to gain access to encrypted keychains.”

A statement from the company is available here

email
Filed in: Cloud Tags: , , , ,

You might like:

Research and Markets: Internet-Based Apps to Drive Global Internet Security Market Through 2020 Research and Markets: Internet-Based Apps to Drive Global Internet Security Market Through 2020
Apple, IBM Unveil Initial ‘MobileFirst for iOS’ App Set; Bridget van Kralingen Comments Apple, IBM Unveil Initial ‘MobileFirst for iOS’ App Set; Bridget van Kralingen Comments
Research and Markets: Banking, Financial Services Security Market Worth $37B by 2019 Research and Markets: Banking, Financial Services Security Market Worth $37B by 2019
Airbus EVP Domingo Urena Raso: Industry Collaboration, Public-Private Cooperation Could Advance Cybersecurity Airbus EVP Domingo Urena Raso: Industry Collaboration, Public-Private Cooperation Could Advance Cybersecurity
© 2014 ExecutiveBiz. All rights reserved.