Apple iPhone is secure. However, an iOS 10 security flaw can compromise it. Elcomsoft, a Russian forensics research firm, has discovered a dangerous loophole in iOS 10 which can allow hackers to crack the otherwise password-protected iPhone backups 40 times faster than before. These backups contain your passwords and other authentication data related to your phone as well as the apps. Apple spokeswoman confirmed to Forbes that the iPhone maker acknowledges the issue and is working on a fix.
"We're aware of an issue that affects the encryption strength for backups of devices on iOS 10 when backing up to iTunes on the Mac or PC. We are addressing the issue in an upcoming security update."
Apple acknowledges iOS 10 security flaw that makes it easier to access protected iTunes backups https://t.co/2l8XQV8GVj pic.twitter.com/xn40ofen10— 9to5Mac (@9to5mac) September 25, 2016
— 9to5Mac (@9to5mac) September 25, 2016
"This does not affect iCloud backups."
Implemented since the iOS 9 on iPhones, the Secure Enclave safeguards the sensitive code that deals with hash keys for encrypting phone data and controls Apple Pay as well as Touch ID. This module is responsible for delaying every incorrect password guessing attempt. That's why the time increases every time someone feeds an incorrect passcode on an iPhone. The module wipes out all data from the iPhone after 10 failed attempts to guess the password.