Apple Working On A Fix To A Major Security Flaw

Advertisement

Advertisement


Update: Apple fixed the security flaw.

Update: Apple has shut down its "iForgot" password recovery page to deal with a security flaw, which is described below.

Complimentary Tech Event
Transform talent with learning that works
Capability development is critical for businesses who want to push the envelope of innovation.Discover how business leaders are strategizing around building talent capabilities and empowering employee transformation.Know More

Original: Watch out, there's a security flaw that could let someone easily take over your Apple accounts, Chris Welch at The Verge reports.

If someone knows your email address and your date of birth they can reset your password. All it takes is a slight tweak of a URL on Apple's "iForgot" page.

Advertisement

Welch says there is a step-by-step guide floating around the Internet, though he didn't link to it to discourage people from actually doing it.

To protect yourself, Welch recommends changing your birth date so that a hacker can't mess with your account.

Also, you should turn on two-step verification which will make your account safer. The problem with two-step verification? Apple waits three days to enact it.