Warning about phone PIN codes that make users vulnerable to hackers

Are you using a lock screen on your smartphone? It's the first layer of protection anyone concerned about personal information security should set up as soon as they buy a new phone.

Today, most devices support biometric authentication methods such as fingerprints or facial recognition, providing increased security against thieves, curious coworkers, or even family members.

However, beneath that layer of biometric protection lies an inherent weakness: the PIN. And most users still choose to use simple 4-digit PINs, which security experts recommend avoiding, especially after recent discoveries related to the ability to crack PINs using artificial intelligence (AI).

New Threat to iPhone and Android: AI Can Crack PIN Codes in Less Than Half a Second

In a security report published on May 15, security experts warned about the possibility that AI can break phone PIN codes in just a few fractions of a second.

Jaanus Rêõmus, CTO at Estonia-based tech company Messente, said that many users have a habit of choosing PIN codes that follow a predictable pattern, such as repeated or consecutive digits, and that makes it extremely quick for AI systems to crack the codes.

Specifically, according to Messente's testing, PIN codes like 5555 and 2222 were identified as the most dangerous. The AI ​​only needed an average of 0.37 seconds to crack the 5555 PIN, and about 0.41 seconds to crack the 2222 code.

“Same-digit PINs are the worst because AI can easily crack them in an average of 0.44 seconds, faster than it takes you to unlock your phone,” warns Rêõmus.

PIN creation habits that make you vulnerable to being a victim

Repeating the same number isn’t the only mistake. According to security experts, predictable number sequences like 1234, 1212, symmetrical pairs of numbers or birth dates (e.g. 1990, 0101, 1111) are also in the “most vulnerable” group. These are all types of PINs that AI can learn and predict very quickly through probabilistic models.

“The fact that AI can crack most common PIN codes in just a few seconds should be a big wake-up call for both individual users and businesses,” said Uku Tomikas, CEO of Messente.

Double Risk: When PINs are reused for both phones and financial accounts

A more serious problem is that many people have the habit of using the same PIN for their phone and other services such as bank accounts, credit cards, electronic safes...

If a thief steals your phone along with your card wallet and learns your PIN, the consequences can be serious, both financially and in terms of privacy.

Shoulder surfing is also not uncommon, especially in public spaces.

Security Tip: Don't Use a 4-Digit PIN – Switch to a Longer One

In this situation, experts advise users to abandon the 4-digit PIN altogether. Instead, use a longer PIN, ideally 6 to 10 digits, or switch to an alphanumeric password if the device supports it.

On iPhone, you can change this option by going toSetting>Face ID & Passcode(orTouch ID & Passcode) >Change password>Password options>Custom code.

Simply opt for a numeric password instead of the default 4-digit code, and you'll have an extra layer of protection against modern attack tools.

The digital world is changing rapidly, and attack tools like AI are becoming more sophisticated. It's time for iPhone and Android users to take a serious look at the role of PINs in security.

If you're using a PIN that's easy to guess or too short, change it today. Don't wait until your data or money is stolen to take action.