Apple Sued Over Not Letting Customers Disable Two-Factor Authentication After Two Weeks

[AnonMac50]

This lawsuit is just crazy, and so are the claims.

However, I do think that a customer should be given a choice if they want to turn it off or not. If features don’t work, so be it. They weren’t working before a customer enables it, and they won’t work after a customer disables it (within a 2 week period).

I think this lawsuit is just to bring attention to this, maybe an attempt at forcing Apple to give us an option.

 

[iApplereviews]

I agree with this lawsuit. Apple should not be our nanny. For one, I'm grown up enough to know how I want to use my device. If I decide I do not want 2 factor authentication, I should be able to turn it off, period. Just like all of the other nanny'isms that Apple forces on us.

Apple devices are designed for children and teenagers, not responsible adults. Without lawsuits like this Apple will never get the hint; "It is our device, let us use it they way we want."

Now for you macrumor'ites that don't mind being treated like children, I'm fine with that, just don't force it on me.

You realize 2 factor is off by default right? So the claim it was forced on you was false. If you do turn it on and don't like it then you have a time period to turn it off. The only reason someone would absolutely need to turn it on would be using advanced features that require a higher level of security such as using an Apple Watch to unlock a Mac.

 

[Heineken]

Apples 2FA is the worst implementation I have ever seen or even heard of. A decent portion of the time the code doesn't get sent and even when it does work as intended, you need to grab that code from a different device.

Capital nonsense.

 

[thisisnotmyname]

This guy seems to have a history of being broke and swinging for the fences hoping for a quick payday. A quick search finds examples of him filing in forma pauperis quite voluminously and being dismissed as frivolous. I expect we'll see a quick dismissal here too.

edit to add: This isn't even the first time he's gone after Apple; this is one of the guys who sued over the batteries too.

edit 2: and then dismissed because he didn't pay his filing fees. He was filing in forma pauperis in this case too but evidently a credit application to BMW was found and it was rejected then dismissed when he failed to come up with the $400. =))

edit 3: add equifax to his list of unsuccessful frivolous suits. OK, I'm done rubbernecking at this train wreck

 

[iApplereviews]

I’m pretty sure you can’t. My mom wanted it off because she doesn’t have a second device and she ended up just linking it to my sisters phone

You don't need a second device to use it. You can add a trusted device via text and the code will come up on that one device.

 

[applefan69]

Seems if people want to disable this and stupidly reduce their personal security, it should be their right.

This was my first thought too.

Reality is these corporations just want more ways to link their data on me together. Having my semi-permanent mobile phone # sure makes it easy for them. Across companies they will all be able to securely confirm it is the same me. How do you think citizens are tracked in China for their social credit score?

Call me paranoid if you want, will not change my view one bit.

 

[iApplereviews]

This guy seems to have a history of being broke and swinging for the fences hoping for a quick payday. A quick search finds examples of him filing in forma pauperis quite voluminously and being dismissed as frivolous. I expect we'll see a quick dismissal here too.

edit to add: This isn't even the first time he's gone after Apple; this is one of the guys who sued over the batteries too.

edit 2: and then dismissed because he didn't pay his filing fees. He was filing in forma pauperis in this case too but evidently a credit application to BMW was found and it was rejected then dismissed when he failed to come up with the $400. =))

edit 3: add equifax to his list of unsuccessful frivolous suits. OK, I'm done rubbernecking at this train wreck

This is all the same guy (address on the fillings all match)

 

[Zwhaler]

Ummm.... You’re kinda doing it wrong. Each individual, even children, should have their own Apple IDs. Apple has family sharing and other features to accommodate the scenarios you are outlining without you all sharing one Apple ID. That would solve all the problems you’re describing.
[doublepost=1549811625][/doublepost]

Well ok then but you can’t get upset at Apple for giving you a solution to your problem that you don’t want to use.

I'm not upset at Apple for giving me a solution to the problem that I don't want to use. That's twisting my words. Let me turn off 2FA after two weeks... that's literally it. I did turn it off, by the way, and I'm happy now.

 

[applefan69]

You don't need a second device to use it. You can add a trusted device via text and the code will come up on that one device.

True, but at this point what is the point, the security may as well not be there then? -So why won't Apple give us the option to opt out?

 

[jerryk]

The words "Ambulance Chaser" come to mind.

 

[maverick28]

You realize 2 factor is off by default right? So the claim it was forced on you was false.

Tell that to Mrs. High Sierra that turned on 2FA in the process of upgrading. I'd like to know from her whether she would agree with your statement.

If you do turn it on and don't like it then you have a time period to turn it off.

Why do I have to have "a time period" to turn it off? How about not having "a time period to turn it off" - like any time I want? Is that a criminal wish?

The only reason someone would absolutely need to turn it on would be using advanced features that require a higher level of security such as using an Apple Watch to unlock a Mac.

I don't own Apple Watch nor do I plan to buy it. What other "advanced" unnamed features that would require 2FA? Using App Store?

 

[iApplereviews]

So this guy put screen shots in the Class Action Complaint that are false. The picture that i posted states that it is a screenshot of the iPhone requiring 2 factor authentication. But that's only the phone asking if it's a Trusted Device (Does Not Require 2 Factor Authentication) and a picture asking for the phone pass code to update (again not 2FA)
[doublepost=1549829353][/doublepost]

Tell that to Mrs. High Sierra that turned on 2FA in the process of upgrading. I'd like to know from her whether she would agree with your statement.


Why do I have to have "a time period" to turn it off? How about not having "a time period to turn it off" - like any time I want? Is that a criminal wish?
It's already been explained why this time period exist.

I don't own Apple Watch nor do I plan to buy it. What other "advanced" unnamed features that would require 2FA? Using App Store?

Maybe Apple should just require it by default. Just like other services that send a text with a code to login.

 

[jclardy]

He should have sued a long time ago for requiring a password. I should be able to log in just by typing in my email address!!!

 

[winston1236]

I predict failure on the plaintiff's part.

Yeah I have to agree, he's going to a have a hard time backing up those monetary losses claims.

 

[tech3475]

There are times when someone may want to disable 2fa.

I remember it took a while to setup my dads phone after a repair because of issues with 2fa, not blaming Apple as there were various factors (e.g. mobile netwrok issues), but if I had known it would be that difficult I would have just disabled 2fa temporarily if I could.

 

[DeepIn2U]

pathetic!! so people don't want security anymore great

One word answer: google
(Not the search everything that company does)

 

[dewski]

Two factor is the biggest pain in my professional life. My users always enable it. Personally, I think it should be an option you can always opt out of. I do not care for security. Let me be unsecure. The inconvenience trade off is worth it for me.

 

[maverick28]

Maybe Apple should just require it by default. Just like other services that send a text with a code to login.

I agree but I have a better solution: the moment I approach my device my dead dog hologram (indiscernible between real and fake) pops up barking. The sound should immediately drive off a hacker or a thief. I then come closer and the dog's eyes scans my Retina and biometrically assess my DNA, blood group and blood pressure, social and card No. This is 6 FA and works better than 2FA. Of course, it would pose certain inconvenience in public places, so what? My dog will always be with me. Apple empowering me to think different.

 

[flygbuss]

Then why does it bother asking for a code at all when you are on your “trusted device” if it’s just going to give it to you anyway?

Simple answer: Because that exactly is part of the additional security. It's like a captcha, a human link in the chain.
Even though the code shows up on the device it's not connected to the browser. You have to close the gap manually.

 

[jhwalker]

Frankly, I don't see what's "frivolous" about this. It should be an OPTION, for users to enable / disable at will.

 

[lederermc]

Isn't it just iCloud that uses Two-Factor-Authentication - not the computer or iPhone itself. So don't use iCloud.

 

[unplugme71]

pathetic!! so people don't want security anymore great

Actually they don’t. Even my CEO requested everything be turned off at the company.

Honestly it’s wgatever at this point. If his accounts gets compromised at least he was warned.

 

[Taipan]

I hope the day will soon come when ridiculous lawsuits get fined for wasting everybody‘s time.
[doublepost=1549838340][/doublepost]

This was my first thought too.

Reality is these corporations just want more ways to link their data on me together. Having my semi-permanent mobile phone # sure makes it easy for them. Across companies they will all be able to securely confirm it is the same me. How do you think citizens are tracked in China for their social credit score?

Or they just don‘t want to be held responsible by the same idiots after they have gotten their data stolen by clicking on a phishing link.

 

[Brandhouse]

Sue, sue - seems to be the way of things in the US.

 

[GoodWheaties]

I'm probably missing something obvious, but I've had two-factor authentication turned on for years and I always get the 6 digit passcode popping up on the actual device I am asked to input it in, as well as on my other devices. I don't really see the point of it if they are "giving you the answer" like that. Maybe there's a glitch with my account or I'm not understanding the concept.

The way I believe it works is it will send the code to every ”trusted” device. So it may include the device you are using. How this protects you is if someone tries to log into your iCloud account it will only send the code to the “trusted” devices, which should not include theirs.

Edit:Never mind someone already said same thing.