Views: 8
Thank you for reading this post, don't forget to subscribe!
Yesterday, we reported about a reporter from Wired Magazine who got his iCloud account hacked into by hackers gaining password information from Apple.
Later in the day, Mr. Hanon and the magazine that he works for (Wired) called Apple about his situation, and got the statement below from an Apple rep.:
“We talked to Apple directly about its security policy, and company spokesperson Natalie Kerris told Wired, “Apple takes customer privacy seriously and requires multiple forms of verification before resetting an Apple ID password. In this particular case, the customer’s data was compromised by a person who had acquired personal information about the customer. In addition, we found that our own internal policies were not followed completely. We are reviewing all of our processes for resetting account passwords to ensure our customers’ data is protected.”
Sometime Monday, reps for Wired Magazine tried to reproduce the steps that the hacker did in order to gain access to Mr. Hanon’s Information. The result?
“On Monday, Wired tried to verify the hackers’ access technique by performing it on a different account. We were successful. This means, ultimately, all you need in addition to someone’s email address are those two easily acquired pieces of information: a billing address and the last four digits of a credit card on file. Here’s the story of how the hackers got them.”
As the above shows, Apple needs to clamp down on their password verification process. What do you think? Comment below.
Additional source: 9to5Mac.com