Apple confirms that Stolen Device Protection will be enabled by default on enterprise devices updated from iOS 26.4 to iOS 26.4.1, and from iPadOS 26.4 to iPadOS 26.4.1. Here are the details.
iOS 26.4 already enabled the feature by default on non-business devices
Earlier today, Apple released iOS 26.4.1 and iPadOS 26.4.1, and its release notes contain the usual This update provides bug fixes for your iPhone.” information.
It wasn’t long before some developers noticed that the release fixed a CloudKit bug that had been breaking iCloud data syncing.
Now, Apple has updated its “What’s new for business in iOS 26” support page, confirming another change:
iOS 26.4.1
Stolen Device Protection will be enabled by default on devices updating from iOS 26.4 to iOS 26.4.1.
Similarly, Apple has updated “What’s new for business in iPadOS 26” with similar information about iPadOS 26.4.1.
Apple continues to strengthen the security of its devices
Today’s move follows Apple’s decision to enable Stolen Device Protection by default on non-business devices in iOS 26.4.
This feature, which was introduced in 2024, adds additional layers of security for sensitive actions when the iPhone is away from normal places, which requires biometric authentication for things like accessing saved passwords, or changing account settings. It also introduces a delay for certain high-risk changes to prevent unauthorized access.
Here’s Apple’s explanation of how the feature works:
With Stolen Device Protection, some features and actions have additional security requirements when your iPhone is away from normal places like home or work. These requirements help prevent someone who has stolen your iPhone and knows your passcode from making important changes to your account or device.
- Face ID or Touch ID biometric: Some actions like accessing saved passwords and credit cards require biometric authentication with Face ID or Touch ID — without a separate passcode or backup — so only you can access these features.
- Protection Delay: Other security actions such as changing your Apple Account password also require you to wait an hour and then perform additional Face ID or Touch ID.
Today’s update also follows a busy period for iOS security. After the discovery of Coruna and DarkSword, Apple released updates to both old and current versions of iOS and iPadOS to address the vulnerabilities.
Additionally, the decision comes a day after Anthropic announced that its new model, Mythos, is particularly powerful at detecting security flaws in apps and browsers.
In fact, Anthropic contacted many companies early on, Apple included, and offered them $100 million in Mythos usage credits to help identify and fix security vulnerabilities before they were exploited.
While the company’s decision to automatically enable Stolen Device Protection on enterprise devices with iOS 26.4.1 does not appear to be related to Coruna, DarkSword, or the Mythos impact, it does reflect Apple’s continued efforts to provide strong protection to its users.
To learn more about Stolen Device Protection, follow this link.
It’s worth checking out on Amazon
FTC: We use auto affiliate links to earn income. More.
