Who said they were not “trying “ to protect user data? Even with 2FA, there is still a chance to get hacked. Same goes without the 2FA enabled but higher risk of getting hacked even if they try to protect.
Got a tip for us?
Let us know
Become a MacRumors Supporter for $50/year with no ads, ability to filter front page stories, and private forums.
Apple Apologizes After Stolen Apple ID Credentials Aided in Phishing Attack in China
- Thread starter MacRumors
- Start date
- Sort by reaction score
The reason for putting this is PRSI isn't unconscious racism, it's the mods having a memory for what kinds of keywords and topics tend to set off loud, lengthy, and increasingly off-topic flamewars. They see certain topics blow up a few times, they know to send it straight to PRSI the next time.
(Oh, and counter to your concern there at the end, I'm not a mod, nor do I know any of the mods, other than seeing their posts here. They seem, by and large, pretty level-headed. But nice attempt at setting a trap there: "If they complain it can only be because I'm right.")
It's not just illegal but most cars sold in the last 15-20 years have in place a system(via an annoying strong sound) that forces drivers to put on their seatbelt after the cars start moving past a certain speed.
Yes. "Stolen". Considering how Apple and China have been so chummy lately, I'd take any statement from Kook with a pound of salt.
No, because the key security flaw this time lay with Apple, not Alibaba or Tencent. Security only as good as the weakest link, and that link turned out to be Apple this time. Of course those company should also reevaluate how their accounts interact with Apple accounts, but the key blame is not theirs.
Since it was their system that was hacked (no phishing involved) and they allowed the user to change the email and password without any notification (this was a while ago) and they control the every aspect of the transaction, I would think they could have reversed the transaction. Disable the apps that were bought on the device they were bought on, don't pay the app developer, don't pay apple, restore the money to my wife's account.
My State wearing a seatbelt Not an option. Unless one likes paying fines and loose their license after so many offenses.
You might want to use one of your keys to step out of your cage of fear.
[doublepost=1539720283][/doublepost]
Nice try, Rick!
Right on it is kowtowing. Me and hundreds of others didn't get an apology from Apple when a South Korean app designer hacked a bunch
of iTunes accounts about 7 years ago and charged his apps to our accounts. I got charged for about $200 worth of iphone apps, when at
the time, I didn't even own an iphone. Far from apologizing Apple tried to convince me that I must have made the purchases and had to pay up.
Even when Apple finally admitted the hack, not one word of apology. I didn't want an apology anyway, it wasn't Apple's fault. Not for the hack, but I would have taken an apology for the way Apple treated me.
When is Apple going to realize any dealing with China is BAD NEWS. Guess they're going to have
to be burned real, real bad before they realize that money isn't everything.
I had friends come back from a trip to Shanghai saying they were prohibited from using their VISA and Master cards, only debit cards or the State owned
Apple pay like system. China SUCKS. Hong Kong and Taiwan are so much better, though HK everyday loses more and more of
its freedoms and choices. It's such a quandary for me. I don't want to buy China, but I've only used Apple my whole life, can't stand Windows.
there is only one reason for this thread to be placed in "Politics, Religion, Social Issues".
the Moderators of this Forum have ample experience that tells them that anything to do with crime within China attracts many posts that blames anybody and everybody except the actual hackers/ phishing scammers.
this thread is an example of that.
so the Moderators did their job correctly i think.
substitute USA or Mexico for China and this thread would not need to be placed where it is.
however, it is rather interesting that apple felt it needed to apologize.
phishing can be extremely sophisticated and is getting to the point where it can fool anybody but the most savvy or sophisticated of users.
i dont think we would have seen an apology from apple if (if? no, every time it happens even in a wide-spread way) in other countries.
no apology is needed or expected in these other countries.
apple was smart (in a marketing sense) to apologize in this case within China.
chinese societal norms expect this kind of apology from 1st Tier companies.
i am sure that apple has changed its Management within China during the past year or year-and-a-half:
apple is getting very good at playing the long game in china.
and we should thank apple for finally putting in place within its China operations Managers who know what they are doing.
the Moderators of this Forum have ample experience that tells them that anything to do with crime within China attracts many posts that blames anybody and everybody except the actual hackers/ phishing scammers.
this thread is an example of that.
so the Moderators did their job correctly i think.
substitute USA or Mexico for China and this thread would not need to be placed where it is.
however, it is rather interesting that apple felt it needed to apologize.
phishing can be extremely sophisticated and is getting to the point where it can fool anybody but the most savvy or sophisticated of users.
i dont think we would have seen an apology from apple if (if? no, every time it happens even in a wide-spread way) in other countries.
no apology is needed or expected in these other countries.
apple was smart (in a marketing sense) to apologize in this case within China.
chinese societal norms expect this kind of apology from 1st Tier companies.
i am sure that apple has changed its Management within China during the past year or year-and-a-half:
apple is getting very good at playing the long game in china.
and we should thank apple for finally putting in place within its China operations Managers who know what they are doing.
I disagree. This is about Apple understanding local culture, and showing respect. Yes, Apple's motivation is strictly local PR in the Chinese market. Maybe you believe Apple should act all "American" in the Chinese market, but that would be bad business.
Phishing emails are actually becoming pretty good, to the point where a normal user wouldn't be able to tell.
It's a horrifying thought that IMAP and SMTP will be the mail technology of choice for the next hundred years.
Maybe Apple should start signing its emails and presenting that validation in iOS/MacOS products.
It's a horrifying thought that IMAP and SMTP will be the mail technology of choice for the next hundred years.
Maybe Apple should start signing its emails and presenting that validation in iOS/MacOS products.
Because it's China, and you know the typical comments when there's Apple and China in one article.
But you do NOT have to put on your seatbelt - it's your CHOICE! You might be stopped and given a ticket, but that was your own choice not to click it.
When any email appears in my Inbox, I mouse over the Sender to see who / what the sender really is. Then, if it appears suspicious, I check the IP address of the sender. In any email, I never provide the info that would allow a person access to my account, whatever account that might be. And I do NOT open emails that ask me to click on any of the links - they are deleted if I am unable to determine their real origin.
OFF WITH THEIR HEADS!
OFF WITH THEIR HEADS!
I got one of these fishing emails also (and I live in Arizona). I will admit that the email sounded pretty legit — it claimed someone had logged into my account from Russia and provided a link to reset the password. That link looked legit with the correct site design, background and fonts and such. But the web address was very wrong. People need to pay attention to the page addresses.
Not sure why Apple is apologizing though. They didn’t create the phishing email.
Not sure why Apple is apologizing though. They didn’t create the phishing email.
How did the credentials get stolen? Article doesn't say. Perhaps Apple knows but is not saying, so hence the apology, otherwise why apologise for something that wasn't your fault?
Some of the comments just don't compute. Its like you saying "I am so sorry" if your neighbor's dog pass away. It doesn't mean you killed the dog. Apologizing doesn't convey any responsibility, only a sense that you commiserate with them.
And that one poster who is ranting about being hacked through some SK app and Apple treated him/her badly and then saying Apple is wrong to apologize. Hello? Isn't Apple proactively reaching out to their users something you WANT to see? Also just for the record here in HK you still have to carry a combo of card, cash and Octopus...I'd take the cashless payment system in China any day.
And that one poster who is ranting about being hacked through some SK app and Apple treated him/her badly and then saying Apple is wrong to apologize. Hello? Isn't Apple proactively reaching out to their users something you WANT to see? Also just for the record here in HK you still have to carry a combo of card, cash and Octopus...I'd take the cashless payment system in China any day.
It’s not prohibited to use Visa or Mastercard anywhere in China. The reason why people get told that is just another Chinese scam, trying to save a few cents on the card fees.
Which brings me to to topic... it’s is deeply embedded in the Chinese culture to cheat, lie and scam for even the most meagre monetary gain. That’s why people work out elaborate schemes to fleece people of their money.
And before you all cry foul, I’ve lived in China for 20 years now, you can’t trust anyone.
While the links are the clearest evidence that message is a fake, one need only look at the poor grammar to get a hint that it's not a legitimate message: "You are in charged for your subscription." And this is one of the better ones. Seems like many phishing messages don't even try to get English right these days. I wonder how much more successful they'd be if they learned to proofread.
Perhaps I was getting confused between phishing and social engineering where they called up Apple to get the creds.
Don't know you so cant say what circle of friends you have but it is a bit hard to believe you've lived in China for 20 years and cant find anyone who doesn't cheat lol. Some of the friends I've met since I came to HK earlier this year have so much money from their parents they don't even need to work, much less cheat/lie/scam to get what they need. Obviously an extreme example, but it is pretty common sense that a wealthier country will have less crime because the return on equity is so much lower.
p.s. Most of the phishing are done in Taiwan or elsewhere these days. The Chinese government has gotten so good at surveillance that it is just too risky to do it onshore (which is kind of funny in itself).
It‘s about China and the president still has less than 100 posts...
They‘ll up the limit with his progress.
[doublepost=1539785677][/doublepost]
Funny. Only optional is already dangerous, but making it even illegal...