Apple Enables Stolen Device Protection by Default on Enterprise iOS

Apple confirms Stolen Device Protection will be automatically enabled on enterprise devices updating from iOS 26.4 to iOS 26.4.1. The same applies to enterprise iPads moving from iPadOS 26.4 to iPadOS 26.4.1.

Apple updated its "What’s new for enterprise in iOS 26" support page to note this change alongside the release of iOS 26.4.1 and iPadOS 26.4.1 today. Those updates carry release notes stating they provide bug fixes, with developers observing a fix for a CloudKit bug that broke iCloud data syncing.

Originally launched in 2024, Stolen Device Protection adds security requirements when an iPhone is away from familiar locations like home or work. It demands Face ID or Touch ID—with no passcode fallback—for actions such as accessing stored passwords and credit cards. High-risk actions like changing an Apple Account password require a one-hour security delay followed by biometric authentication.

Apple explains: "With Stolen Device Protection, some features and actions have additional security requirements when your iPhone is away from familiar locations such as home or work. These requirements help prevent someone who has stolen your iPhone and knows your passcode from making critical changes to your account or device."

This enterprise rollout follows Apple's enabling of the feature by default for non-enterprise devices in iOS 26.4. Apple recently addressed Coruna and DarkSword exploits across iOS and iPadOS versions.