New Apple security hole reportedly opens door wide open to resetting accounts
Summary: If you're interested in trying out Apple's new two-step ID authentication, you might want to hurry up.
Apple just introduced two-factor authentication for Apple ID accounts, and there might already be some considerable urgency for it.
Reports have been circulating on Friday that there is a new security flaw in which anyone could reset an iCloud/Apple ID account with just a date of birth and a correlating e-mail address.
Based on a report from The Verge, it really doesn't get more complicated than that and a modified URL designed to trick unaware users.
To recall, the Cupertino, Calif.-based company added the two-step option for Apple ID users to have a verification code sent to an authorized device when signing in. Apple follows Facebook and Google (not to mention a number of enterprise tech business) embracing this heightened security trend.
Thus, now seems like a primetime to set up two-factor authentication if you haven't already.
The problem is that some users are allegedly being informed that the registration process for the extra measure can't be completed for at least three days.
For now, it looks like backup option is to proceed with extreme caution when using Apple's iForgot tools.
More information about setting up two-factor authentication is available from Apple's support pages.
Kick off your day with ZDNet's daily email newsletter. It's the freshest tech news and opinion, served hot. Get it.
Talkback
Why would apple release their products with so many gaping holes in them?
Shame on you apple. Shame on you.
Amazing!
Like other providers are better.
scmagazine.com.au/News/337471,twitter-microsoft-linkedin-yahoo-open-to-hijacking.aspx
But if you use hotmail as your live account then they now have access to your skydrive (personal files) and your app store account (purchases)
Good to know
is
"Like other providers are better"
Good, glad we have forever settled that argument and it only took a couple minutes. I'm guessing now we won't ever see swarms of you guys on certain security related articles?
Yeah right.
You mean
I'm a swarm?
So, are we agreed then?
"Good, glad we have forever settled that argument and it only took a couple minutes. I'm guessing now we won't ever see swarms of you guys on certain security related articles?"
I think this may be the only post Ill ever have to make..
He knows that.
Sadly all those responding to you are clueless...
It's funny
So apple deserves to be congratulated for this?
except if apple is the vendor.
Got it.
Why wouldn't we hold apple's feet to the fire for this? Why should anyone show apple "love" for this one? Why should we "hate" Microsoft when apple messes up?
So you consider yourself a fanboy, then?
But to use your own wording for these kind of things: Will you go on record saying that there's NOT a lot of "Microsoft love" and "Apple hatred" in the comments section of ZDNet articles?
Some participants in this forum (but not you, in my opinion) have NO credibility, because they ALWAYS claim that THEIR platform/products have NO weaknesses whatsoever. Everything's perfect, always. But all other platforms/products "suck", and people who use them are "morons". That's how fanboys in the comments section behave.
Naa
NO true blue fanboe would ever own up to owning a product from his main rival.
Could be his a swinging fanboi! lol ;-)
You completely miss the point.
Switch to Microsoft technologies.
Get a Windows phone, its the future.
Owlnet, with all respect...
Owllll1net has no respect for himself
Thank you for proving my point
Telling truth doesn't make One a 'fanyboy'
Thanks for proving my point, again