It appears you have not yet registered with our community. To register please click here...

Go Back [M] > Madshrimps > WebNews
Hacker forces Apple and Amazon to change security policies Hacker forces Apple and Amazon to change security policies
FAQ Members List Calendar Search Today's Posts Mark Forums Read

Hacker forces Apple and Amazon to change security policies
Thread Tools
Old 9th August 2012, 06:31   #1
[M] Reviewer
Stefan Mileschin's Avatar
Join Date: May 2010
Location: Romania
Posts: 119,722
Stefan Mileschin Freshly Registered
Default Hacker forces Apple and Amazon to change security policies

A hacker dubbed Phobia, has forced Apple and Amazon to change their policies after breaking into to a tech journalist's account.

According to Cnet, the hack involved looking up Matt Honan's Twitter and guessing his Gmail account. From there they were able to view his backup email address, which was also his AppleID.

The next thing they needed was the last four digits of Honan's credit card number. They got this through Amazon by calling its Amazon's support line and added a fake credit card account.

Then the hacker called Amazon again and claimed to have lost the account password. Phobia used the fake credit card number, and added a new email account which then allowed him to view the last four digits of Honan's credit card.

The hacker then called AppleID and used the credit card number as well as Honan's birthdate to get a temporary password.

It was all too easy, and has caused a bit of a problem for Amazon and Apple, which have been touting their various cloud systems as secure. Amazon has come up with the best policy. It has stopped allowing people to change their account settings via a phone call.

Apple is currently freezing all AppleID password requests made over the phone and is thinking up a new policy. But the question is what possessed anyone to think that using the last four digits of a credit card to verify someone's identity for such powerful services on linked devices passes for security.

Phobia said he wanted " to publicise security exploits, so companies will fix them". He seems to have managed that.
Stefan Mileschin is offline   Reply With Quote

Similar Threads
Thread Thread Starter Forum Replies Last Post
UK judge forces Apple to state on its site that Samsung didn't copy the iPad Stefan Mileschin WebNews 0 19th July 2012 07:46
Apple Invites Kaspersky to Improve OS X Security Stefan Mileschin WebNews 0 15th May 2012 06:57
Apple 10 Years Behind Microsoft on Security: Kaspersky Lab Stefan Mileschin WebNews 0 27th April 2012 08:17
Apple shows it hasn't a clue about security Stefan Mileschin WebNews 0 11th April 2012 08:43
Apple forces PhotoFast to abandon 256GB upgrade kit for MacBook Airs jmke WebNews 0 30th November 2010 09:32
Microsoft admits Vista security won't change much jmke WebNews 0 24th April 2007 09:52

Thread Tools

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

vB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are Off

All times are GMT +1. The time now is 09:20.

Powered by vBulletin® - Copyright ©2000 - 2020, Jelsoft Enterprises Ltd.
Content Relevant URLs by vBSEO