Got a tip for us?
Let us know
Become a MacRumors Supporter for $50/year with no ads, ability to filter front page stories, and private forums.
Some Users Locked Out of Their Apple IDs, Forced to Reset Passwords
- Thread starter MacRumors
- Start date
- Sort by reaction score
Are you saying Apple 2FA system can be hijacked by the hacker too? Could you explain a little more? i'm curious.
Similar - had to reconfirm / reauthorize my cards in Apple Pay. Did it in the middle of a payment transaction. Declined the payment - from any card (3 cards - 2 banks). Then asked to reenter the CCV code(s) - which all failed.
PITA.
I haven’t noticed being locked out of my Apple ID (This Time). However, I this evening I was locked out of one of my phones (AGAIN) ♀️
It seems they had a busy day yesterday: after I had to reset my password (because it was the only way to recover it), my iPhone asked again for the password about three more times during the day, and my MBP asked it one more time. I didn’t need to reset the password again, just retype it, though.
It more on short code
E.g
I receive 2fa from bank from number 2222.
After a few month later, i receive a number 2222 asking to verify but not from bank.
When we saw 2222, we think the number is secure but not. No way to verify legitimacy 2222 is from provider a work for bank or scammer. ** I have a complain a bank in my country since i receive the SAME number 2FA.
From apple perceptive view which i been before .
I used iphone 5s before with x number from company . After few later, suddenly apple asking 2fa for my imac 2017.It said i need to have my iphone 5S with the original simcard to verify 2fa factor. I don't know what i have done but i think i open back my junk 5S and insert new sim card and asking apple for help to verify my 2fa for my imac 2017 icloud.. Hassle .. Yeah.
Last edited:
Not sure this is related, but I’ve been getting a ton of phishing emails claiming from Apple saying my account is having problems, etc. These emails manage to go through the spam filters of GMail and Outlook despite the obviously questionable sender email. So having these emails in the inbox might trigger some unknowing lay user to click the link.
Sometimes AI algorithms trying to challenge you to enter the password correctly multiple times, I used to do it twice correctly to get access in Apple IDs (especially in desktop and in iPhone Apps Store logins).... Mary be your case is different...also depends on the kinfof password you use..(moderately complex or complex etc)
[doublepost=1542178133][/doublepost]
I get lots of spam mail in my other email ids but continue to ignore and flag them as spam...
And it happened to me on the 4th of November, Sunday; out of the blue. And I have never received any location prompts that came with the two-factor authentication as well. So even if they were attempting, they didn't know the password. Yet again, I had to reset it.
First world problems. I’m continually shocked by people who complain when security credentials must be updated. Sure it’s inconvenient, but really folks? It’s never a problem to change your password regularly. Use it as a reminder to update all your critical passwords! But let’s move on. There are larger issues we should focus on.
It’s the old argument about convenience vs security. Regular lay people don’t have the concept of digital security since it’s never part of any core basic education. I managed a team of users, and when I asked them to change the temporary password of 12345, many simply put 123456. And we are talking about college educated people here. Thus any inconvenience being put, they will complain.
It’s the same with hand washing. It’s common sense for some, but not to many.
The point of asking questions was to make sure you are the right person to change the password. The password needed to be changed because apple believes it was compromised for some reason.
Would be nice if they explained,though.
[doublepost=1542208132][/doublepost]
Could be that there was some systemic issue where passwords might have been exposed.
Why can't they give us a straight answer - is this a glitch on their part? Was there a hack which targeted us? Did someone have access to our accounts?
I agree with your assessment, but I am wondering what led to this event.... Was Apple's security breached? We may never know.
I find it interesting that Apple uses the 1Password program internally but does not use their cloud service because the information would have to be passed through third-party servers. So how secure is our information which Apple is passing over third-party servers?
Just a question, not an accusation.
I'm there too..always..
Maybe we are too good to be true and Apple knows Did it happen only to email different than @gmail.com ? Just a curiosity
[doublepost=1542215508][/doublepost]
Same here! But looks like it's not enough
BTW it would be "very nice" of Apple to disclose to his customers why we need to change password and mine wasn't a silly one
Last edited:
Hard to imagine how loud people would squeal if there was a serious problem, rather than a minor inconvenience.
Happened to me. Ironically, I also got hit with fraudulent charges on my CC from the iTunes store. Already contacted my CC company.
"The original poster on Reddit confirmed that they have two factor authentication enabled and a unique iCloud password for their Apple ID not used anywhere else, and many users report similar settings."
Seems strange the same security Apple is trying to protect is being broken too lol how ironic.
If Apple is doing this for their own use case, "as" and "when" they feel up to did, it just undermines the need if account holder themselves cannot get access.
That's REAL security.. Bravo Apple. .However if it was a legit reason, there would be no reason to hide why they are doing it, or what caused it..
Other than, "Apple just decided users needed to reset their "weak" passwords or no reason whatsoever"
Seems strange the same security Apple is trying to protect is being broken too lol how ironic.
If Apple is doing this for their own use case, "as" and "when" they feel up to did, it just undermines the need if account holder themselves cannot get access.
That's REAL security.. Bravo Apple. .However if it was a legit reason, there would be no reason to hide why they are doing it, or what caused it..
Other than, "Apple just decided users needed to reset their "weak" passwords or no reason whatsoever"
Last edited:
Had this happen to me a few weeks ago. Have you traded an old phone in before? If so, this might be why.
Has anyone heard what caused some of us to be locked out of our Apple accounts and forced to log back in?
At first I thought no big deal. I received the message "For security reasons" I needed to create a new password for my Apple ID and log back in on all my devices. No big deal.
But then this morning I awoke to find an email from Apple stating my Billing information was updated. I logged into my Apple ID account to find my credit card information has been deleted. I am beginning to wonder if there was a security breach on some accounts and Apple is proactively safeguarding these accounts?
If so, I wish they would inform us of what is going on...
I am almost at the point where I am going to create a new email, and a new Apple ID. Can never be too careful.
At first I thought no big deal. I received the message "For security reasons" I needed to create a new password for my Apple ID and log back in on all my devices. No big deal.
But then this morning I awoke to find an email from Apple stating my Billing information was updated. I logged into my Apple ID account to find my credit card information has been deleted. I am beginning to wonder if there was a security breach on some accounts and Apple is proactively safeguarding these accounts?
If so, I wish they would inform us of what is going on...
I am almost at the point where I am going to create a new email, and a new Apple ID. Can never be too careful.
Last edited: