One of the features of iOS is that it takes a screenshot of the application when it moves into the background. An attacker having physical access to the system can easily access this screenshot and view sensitive information contained in it.
Let's follow the given steps to demonstrate the side channel data leakage vulnerability:
ContactDetails.ipaiOS app provided with the code bundle of this chapter. It has various fields such as name, credit card number, CVV, and so on. Enter data in all these fields and background the app:
Open this image using any image viewer tool and you will observe the victim's sensitive financial information, such as credit card number, CVV, and so on, in plain text:
It has the...