Critical iOS 13 bug can compromise your online accounts
As Apple is months away from releasing the stable version of iOS 13, people have been installing the beta iteration of the platform on their iPhones. The update comes with all the fancy features that Apple has promised but also carries a few bugs, including a critical issue that can compromise your online accounts. Here's all you need to know about it.
iOS bug opens access to saved passwords
iOS has long been providing an option to store passwords for automatic auto-filling login credentials on the Safari browser. The feature comes handy and saves users from the trouble of entering passwords manually for different sites. But, as it turns out, these stored passwords can be accessed and opened by anyone having physical access to your iPhone (if it is running iOS 13 beta).
How stored passwords can be accessed
The passwords stored on iOS 13 beta can be accessed easily, iDeviceHelp demonstrated in a video. You just have to head over to Settings > Passwords & Accounts and keep tapping on the 'Website & App Passwords' option. Normally, tapping on this option presents a pop-up to authenticate via Face ID/ Touch ID, but in this case, repeated taps will bypass the restriction.
Then, all stored passwords show up
Once the Face ID/Touch ID restriction is bypassed, all passwords for websites and apps stored on the device appear, complete with login IDs associated with them. Now, this poses a major threat to the security of online accounts as anyone could copy or Air Drop these credentials to their device to gain unauthorized access to your social media or even banking accounts.
Fix could be coming soon
According to a Reddit thread, Apple has been notified about the issue, which means the next update for iOS 13 beta is likely to fix the serious security issue. However, in case you don't want to take any chances, we recommend rolling back to the stable version or at least make sure that nobody gets physical access to your iPhone, especially when it's unlocked.
