One of the features of iOS is that it takes a screenshot of the application when it moves into the background. An attacker having physical access to the system can easily access this screenshot and view sensitive information contained in it.
Let's follow the given steps to demonstrate the side channel data leakage vulnerability:
Download the
ContactDetails.ipa
iOS app provided with the code bundle of this chapter. It has various fields such as name, credit card number, CVV, and so on. Enter data in all these fields and background the app:Download application files and go to the application's
Library
directory that has theSnapshots
subfolder:Open this image using any image viewer tool and you will observe the victim's sensitive financial information, such as credit card number, CVV, and so on, in plain text:
You can also perform this task using tools such as idb. Start the idb tool and make sure that you have installed all the prerequisites:
It has the...