A growing number of iPhone, iPad and Mac users in Australia are turning to the Apple Support Communities and Twitter to report incidents of their device being remotely locked through iCloud. In some cases, a fraudulent message appears through the Find my iPhone service demanding payment between $50 and $100 to someone named Oleg Pliss for the device to be unlocked…
According to a new report from security research firm Netcraft, Electronic Arts' servers have been compromised. Two websites from the video game publisher's domain have been hacked and are now hosting phishing pages setup to steal Apple ID and credit card information.
It works like this: when a potential victim arrives at one of the pages, they are asked to enter their Apple ID and password. Once completed, they're taken to a second page which asks for personal details and credit card info, and then redirected to the official Apple ID website...
Following a flurry of reports which criticized various security holes allowing hackers to break into people's Apple ID accounts, Apple in March of 2013 finally stepped up account security by rolling out two-step verification for Apple IDs in the United States, United Kingdom, Australia, Ireland and New Zealand.
Two months later, the feature launched in nearly a dozen additional countries: Austria, Argentina, Belgium, Brazil, Mexico, Netherlands, Pakistan, Poland and Russia.
And now, as part of the third wave of expansion, the firm is enabling stronger account security for Apple ID users located in Canada, France, Germany, Japan, Italy and Spain...
Last night, I tweeted a picture of an error message I received while trying to download an app from the App Store. The error was: FATAL::Unable to process your request. Please try again.
I had never encountered that error message until then, and I chalked it up to the random iOS 7 problem. After rebooting my phone and logging out of my Apple ID account via Settings > iTunes & App Store, I was met with the same exact error message. Even when trying on another device the error message persisted. I decided to go to bed, hoping that everything would be okay in the morning.
Well, I just tried to download an app again, and was met with the same exact error message. I thought to myself, "Okay, perhaps this is an iOS 7 issue since I had only tried it on iOS 7 enabled devices up to that point." Nope. After trying it on my iPod touch, which is still running iOS 6, I was met with the exact same FATAL error message. In fact, I was met with the same error on my Mac when attempting to download from the Mac App Store. So what gives? Apple's System Status page is showing everything is okay, but that's obviously not the case...
Following a major security vulnerability that let attackers reset your Apple ID password using only your email address and date of birth, Apple responded in March by fixing the iForgot hole and bolstering Apple ID account security with an optional new two-step verification process for Apple ID accounts in the United States, United Kingdom, Australia, Ireland, and New Zealand.
Today, the company has started to roll out the feature to nearly a dozen additional countries, including Canada, Russia and Brazil...
The Verge claims to have discovered a major security hole which allows attackers to reset your Apple ID password using only your email address and date of birth. Yes, you read that right. The scary part is that it doesn't take a genius to harvest these two pieces of information from Google and your social media accounts or by analyzing your online identity per se.
Exploiting the vulnerability basically lets attackers take over your Apple ID account, and with it all your purchases, iTunes credits, email messages, contacts, your Photo Stream and pretty much any personal data residing up in the Apple cloud.
Apple's iForgot page went down "due to maintenance" shortly after the incident, presumably to prevent exploits until Apple plugs the security hole. Conveniently enough, the company just recently rolled out a new (and way overdue) two-step verification process to protect your Apple ID using not only your password, but also by tapping your trusted devices and a recovery key.
With this exploit making the headlines, you should enable two-step verification now (Cody has a timely tutorial on that)...
It feels like every day we hear a new story about a major internet company like Evernote, Twitter or Facebook getting hacked. And when it happens, user passwords, personal information and uploaded content are all compromised.
With this in mind, it's nice to hear that Apple has given its account security a boost today with a new two-step verification process. The safeguard requires users to verify their identity on a trusted device before making any changes.
Tutorial: How to enable Apple two-step verification
You've no doubt heard about a scandalous security oversight which has enabled hackers to break into former Gizmodo writer Mat Honan's iCloud account to remotely wipe his MacBook Air, iPhone and iPad. He was easily hacked because Amazon used to publish the last four digit of users' credit card on the web, which happens to be exactly what Apple's customer support reps need to reset one's Apple ID password over the phone (in addition to your name and billing address).
Reacting to the security outbreak, Amazon has stepped up its battle to prevent this kind of social engineering. The online retailer on Monday closed a privacy hole that could allow anyone to access to Amazon accounts over the phone using just a name, email address and mailing address.
Amazon also promised to no longer allow adding new credit cards to accounts over the phone. Today, Apple reportedly sent a notice to its support staff, temporarily halting Apple ID password resets over the phone...
We received several tips this past weekend that the latest iOS 6 Beta 3 which was released to Apple's registered developers last week finally does away with Apple ID requirement for free apps. Normally, when you download a free app from the App Store, Apple requires you to enter your existing Apple ID or create a new account.
This never made any sense to ordinary users: I can't tell you how many times my friends (some of whom only download free stuff) asked me if there was a way to drop that pesky requirement. It also doesn't support Apple's 'cut the cord' initiative that lets one set up and use an iOS device without a computer and iTunes...