"Hey Siri" support and possibly wireless charging case alongside AirPower charging mat.
AirPods and AirPower: Everything We Know
Researchers Demonstrate Vulnerability Allowing Theft of iPhone Passwords
IDG News Service reports that German researchers have demonstrated how a knowledgeable thief could bypass the iPhone's passcode locking to upload a script capable of revealing entries from the device's password keychain system, potentially giving the hacker access to sensitive passwords stored on the device.
In a video that demonstrates the attack, the researchers first jailbreak the phone using existing software tools. They then install an SSH server on the iPhone that allows software to be run on the phone.
The third step is to copy a keychain access script to the phone. The script uses system functions already in the phone to access the keychain entries and, as a final step, outputs the account details it discovers to the attacker.
The attack works because the cryptographic key on current iOS devices is based on material available within the device and is independent of the passcode, the researchers said. This means attackers with access to the phone can create the key from the phone in their possession without having to hack the encrypted and secret passcode.
The researchers note that gaining access to an email password makes it easy for hackers to then reset passwords for other types of accounts, while compromised passwords for corporate networks can obviously result in security issues for businesses.
The exploit obviously requires a fair amount of technical knowledge, and thus shouldn't be an issue for the vast majority of users whose devices become lost or stolen. But the exploit could be used in targeted attacks by those specifically seeking to gain access to sensitive systems.
[ 152 comments ]
For this week's giveaway, we've teamed up with Astropad to offer MacRumors readers a chance to win a Luna Display adapter. The Luna Display is a handy little dongle that's designed to...
In late November, Apple launched a limited time promotion that offers up to $100 in additional credit when trading in an iPhone 6 through iPhone 8 towards the purchase of a new iPhone XS or...
Apple today filed its 2018 Conflict Minerals Report with the SEC as part of its commitment to supplier responsibility.
Apple said it remains "deeply committed" to upholding human...
Apple's Beats by Dre brand today unveiled a new NBA collection, with Beats Studio 3 Wireless Headphones available in six colorways representing the Golden State Warriors, Los Angeles Lakers,...
Twitter CEO Jack Dorsey today commented on the possibility of an edit button for tweets, suggesting Twitter is considering a feature that might let people go back and add clarifications or...
In the wake of Apple's decision to end its AirPort line of routers, many users continue to hunt for the best possible Wi-Fi networking solution. Ubiquiti Networks' AmpliFi routers have been...
Today is Valentine's Day, and as it happens on holidays, many online retailers are using the event to share Valentine-themed discounts and offers to their customers. In this post we've...
First released in 2016, Apple's AirPods are widely considered to be one of the company's best products in recent years, with AirPods offering great battery life, portability, simple charging,...
