[youtube]http://www.youtube.com/watch?v=uVGiNAs-QbY[/youtube]
Researchers from the German Fraunhofer institute have PROVEN in the video clip above, how can I find out the encrypted passwords from the keychain of an iPhone, even if it has a passcode set. Everything is done, of course, by applying a jailbreak that provides access to the terminal's system files and allows the researchers to run a special script that displays and decrypts the passwords in the device's keychain. Using this method, passwords for e-mail accounts, Wi-Fi HotSpots, voicemail, VPN or some application passwords can be obtained.
As soon as attackers are in possession of an iPhone or iPad and have removed the device's SIM card, they can get a hold of e-mail passwords and access codes to corporate VPNs and WLANs as well," said the researchers in a statement. "Control of an e-mail account allows the attacker to acquire even more additional passwords: For many web services such as social networks the attacker only has to request a passwordord reset.
This method WORKS only for passwords from the keychain, stored in the device's system, but it does not work for passwords from other security cards located in the terminal. Without jailbreak, running the script that decrypts passwords is not possible, so theoretically an iPhone without jailbreak could not be subjected to such an attack. Unfortunately, this attack proves once again how vulnerable iDevices are after a jailbreak and this could be a starting point for Apple in the fight against jailbreak.
Owner's of a lost or stolen iOS device should therefore instantly initiate a change of all stored passwords," said Fraunhofer SIT. "Additionally, this should also be done for accounts not stored on the device but which might have equal or similar passwords, as an attacker might try out revealed passwords against the full list of known accounts.
