Graham Spencer on the exploit:

The only way at this stage to prevent such an attack is to avoid the attacker from physically accessing the iPhone…

I have never had the delusion that my data was secure if someone else has my phone — do people really think their data is safe if they lose their phone?