Oh no, a bug in Apple's software. That's far worse than Google doing things like oh, let's say tracking you for marketing purposes. Glad you've got your priorities.
Yes, yes it is worse.
Got a tip for us?
Let us know
Become a MacRumors Supporter for $50/year with no ads, ability to filter front page stories, and private forums.
Apple ID Security Hole Allows Password Reset With Email Address and Date of Birth
- Thread starter MacRumors
- Start date
- Sort by reaction score
Yes, yes it is worse.
Oh no, a bug in Apple's software. That's far worse than Google doing things like oh, let's say tracking you for marketing purposes. Glad you've got your priorities.
Yea. I would say it is far worse. One involves your financial information, address and potential identity theft.
The other involves targeting ads based on your searches.
Glad you understand how different the two things are.
I wish these sites would stop reporting things like this.
You're telling every pleb under the sun how to hack my account.
Not cool.
You're telling every pleb under the sun how to hack my account.
Not cool.
One involves a bug, a 'security hole' that will quickly be patched and shouldn't have existed.
The other involves a truly immoral company who track you without your knowledge.
Glad you understand how different the two things are.
Activated 2 step verification and also removed my credit card information from my account.
Hack away you hackers!
Hack away you hackers!
Seriously, it confounds me think how anyone could believe otherwise... This new hole is extremely disconcerting.
All fine and dandy but I can't seem to enable the 2 step verification on my account. Must be country dependent.
I think like other said, it might have something to do with your password. I have a .mac (primary) and a .me (alternate) account. According to Apple "You can use your Apple ID or your Alternate Apple ID to access everything you do with Apple." Which is what I have been doing, I have been using my .me account. So when I did the two-step verification I used the .mac to log in and activate the whole two step process in about 5 minutes. I just tried to log into my .mac and .me account, and both times I was ask to go through the verification process. So it looks like the .mac account is covered as well. Just sharing my experience.
Google (and apple, MS, whoever) can have all the location data they need and stick it up their arse.
What I don't want is someone having access to my iCloud/iTunes account with a plethora of personal information and something linked to my cash/credit card thanks to a simple hack like this.
How are the two even related?
What I don't want is someone having access to my iCloud/iTunes account with a plethora of personal information and something linked to my cash/credit card thanks to a simple hack like this.
How are the two even related?
Last edited by a moderator:
Really? without your knowledge? When you sign up for their services - you accept their TOS.
And tracking you is different than exposing actual personal information. Unless you want to start spreading some FUD that Google exposes your PERSONAL information to 3rd parties.
I now know why I have to wait. In the FAQ it says "Significant changes can include a password reset or new security questions".
When I saw this thread I went to my ID and I forgot my security questions.
D'OH !
When I saw this thread I went to my ID and I forgot my security questions.
D'OH !
Oh no, a bug in Apple's software. That's far worse than Google doing things like oh, let's say tracking you for marketing purposes. Glad you've got your priorities.
If you're saying that it is worse tracking for marketing purposes when you have to agree to it (by the way, Apple also tracks for marketing purposes) than a bug that can compromise an account the one trolling is not the other person
What is ridiculous is the 3 day waiting period to activate 2-step authentication. If you get by the security questions to activate it, making people wait is beyond stupid. If the hacker got past those questions, they could just change the password anyways.
I wonder how many people here would be willing to give us access to their personal contact information, email address, home addresses, phone numbers, emails and and an account with the ability to spend their cash to show us how little this matters?
Unbelievable.
Yeah, you're right. It wasn't really a good comparison on my part.
Just wanted to make the point that it's not like this was intentional, although that doesn't justify it. I believe Apple do take privacy very seriously (unlike other companies, as aforementioned), and it's regrettable something this important has been overlooked by them.
I did it no real issue. I had to change my password cause it didn't have the whole one upper etc but it went just fine.
----------
Did you have to change your password. I got the three day thing also and I had to change mine
People who have reset their passwords recently will have to wait 3 days to verify they are the owners of the account, otherwise it lets you do it right away. I just set up my 2 step, maybe this was an apple conspiracy to get people to move to 2 step verification.
I believe main reason you posted was to "slam" Google and you hoped you would get internet hi-5s. That backfired, didn't it.
Google takes privacy very seriously too. And just like any other company - they've made mistakes or had issues. But if you think security is NOT important to Google then you don't understand their business.
If they lose people's trust or have a really bad security issue - they are finished. Their business model RELIES on keeping information secure.
No, not at all. Why are people like you so pessimistic? If you look at the first quote I replied to, I was making a point against the comment that said 'Apple can't do anything right in this space' (I'm paraphrasing, of course) I merely made a point that other companies in 'this space' do a lot worse things. Possibly wasn't the best comparison, in the context of the article, but it's not unforgivable.
If anybody's looking for Internet hi-5s it would be the people bashing Apple; that seems to be the trendy thing to do now.
We okay?