"This opinion [that the Smartphone device encryption will provide sufficient security] we encountered even in companies' security departments", says Jens Heider, technical manager of the Fraunhofer SIT security test lab. "Our demonstration proves that this is a false assumption. We were able to crack devices with high security settings within a very short time."
Companies wanting to protect themselves against the consequences of such attacks should educate their staff accordingly and introduce appropriate emergency procedures. Not only should employees who have lost their iPhone change all their passwords, the company should change the respective network identifications as quickly as possible as well. Jens Heider: "This reveals how well the security concept has been adapted to the mobile challenge."
Graham Cluley, Senior Technical Consultant at Sophos noted, "Companies using Apple's popular smartphone need to put pressure on the technology firm to fix the issue as soon as possible."
"This is embarrassing for Apple, because they want people to believe they have a trusted enterprise device, what's important is how quickly they can patch this."