| ||Thread Tools|
|9th August 2012, 06:31||#1|
Join Date: May 2010
Hacker forces Apple and Amazon to change security policies
A hacker dubbed Phobia, has forced Apple and Amazon to change their policies after breaking into to a tech journalist's account.
According to Cnet, the hack involved looking up Matt Honan's Twitter and guessing his Gmail account. From there they were able to view his backup email address, which was also his AppleID.
The next thing they needed was the last four digits of Honan's credit card number. They got this through Amazon by calling its Amazon's support line and added a fake credit card account.
Then the hacker called Amazon again and claimed to have lost the account password. Phobia used the fake credit card number, and added a new email account which then allowed him to view the last four digits of Honan's credit card.
The hacker then called AppleID and used the credit card number as well as Honan's birthdate to get a temporary password.
It was all too easy, and has caused a bit of a problem for Amazon and Apple, which have been touting their various cloud systems as secure. Amazon has come up with the best policy. It has stopped allowing people to change their account settings via a phone call.
Apple is currently freezing all AppleID password requests made over the phone and is thinking up a new policy. But the question is what possessed anyone to think that using the last four digits of a credit card to verify someone's identity for such powerful services on linked devices passes for security.
Phobia said he wanted " to publicise security exploits, so companies will fix them". He seems to have managed that.
|Thread||Thread Starter||Forum||Replies||Last Post|
|UK judge forces Apple to state on its site that Samsung didn't copy the iPad||Stefan Mileschin||WebNews||0||19th July 2012 07:46|
|Apple Invites Kaspersky to Improve OS X Security||Stefan Mileschin||WebNews||0||15th May 2012 06:57|
|Apple 10 Years Behind Microsoft on Security: Kaspersky Lab||Stefan Mileschin||WebNews||0||27th April 2012 08:17|
|Apple shows it hasn't a clue about security||Stefan Mileschin||WebNews||0||11th April 2012 08:43|
|Apple forces PhotoFast to abandon 256GB upgrade kit for MacBook Airs||jmke||WebNews||0||30th November 2010 09:32|
|Microsoft admits Vista security won't change much||jmke||WebNews||0||24th April 2007 09:52|