Russian security company Elcomsoft has discovered a major security flaw in iOS 10: encrypted iTunes backups made with iOS 10 allow password-cracking tools to make 6 million attempts per second, more than 40 times faster than with backups created with iOS 9. Apple has confirmed that the issue is real and plans to fix it in an upcoming security update. In the meantime, because the vulnerability could be exploited only by someone with access to your iTunes backups, Apple recommends a strong login password and using FileVault encryption. (The problem also affects backups made in iTunes for Windows.) iCloud backups are immune to the problem, so if you’re concerned about the security of your iTunes backups, you might consider switching them to iCloud.