According to Andreas Kurtz, a security researcher who tested the security of Apple’s iOS7 e-mail application, Apple is not encrypting attachments leaving them exposed to theft. Kurtz posted this in his blog on April 23, 2014 and said that he has informed Apple but has yet to hear when they might address the issue. He tested and reproduced the issue on an iPhone 4, 5s and an iPad 2 running both iOS 7.0.4, 7.1 and 7.1.1 (the latest release).
“I found all attachments accessible without any encryption/restriction”
It is recommended that users stop sending sensitive information in attachments using Apple’s mail application until this is fixed.
It makes us here at ChiaraMail work even harder to get our iOS e-mail application into the hands of consumers so they will be protected with Envelope-Content Splitting technology.