Apple Working On A Fix To A Major Security Flaw
Update:
Update: Apple has shut down its "iForgot" password recovery page to deal with a security flaw, which is described below.
Original: Watch out, there's a security flaw that could let someone easily take over your Apple accounts, Chris Welch at The Verge reports.
If someone knows your email address and your date of birth they can reset your password. All it takes is a slight tweak of a URL on Apple's "iForgot" page.
Welch says there is a step-by-step guide floating around the Internet, though he didn't link to it to discourage people from actually doing it.
To protect yourself, Welch recommends changing your birth date so that a hacker can't mess with your account.
Also, you should turn on two-step verification which will make your account safer. The problem with two-step verification? Apple waits three days to enact it.
- I spent $2,000 for 7 nights in a 179-square-foot room on one of the world's largest cruise ships. Take a look inside my cabin.
- Saudi Arabia wants China to help fund its struggling $500 billion Neom megaproject. Investors may not be too excited.
- Colon cancer rates are rising in young people. If you have two symptoms you should get a colonoscopy, a GI oncologist says.
- Hyundai plans to scale up production capacity, introduce more EVs in India
- FSSAI in process of collecting pan-India samples of Nestle's Cerelac baby cereals: CEO
- Narcissistic top management leads to poor employee retention, shows research
- Audi to hike vehicle prices by up to 2% from June
- Kotak Mahindra Bank shares tank 13%; mcap erodes by ₹37,721 crore post RBI action