Recent hack forces Apple to suspend phone based password resets

Amazon has also made changes to its account settings policy
Author:
Publish date:
1-icloud1.jpg

Apple has put a 24-hour ban on users changing their Apple ID passwords via calling Apple support after journalist Mat Honan’s hacker disaster.

On Friday Honan’s iCloud account was hacked and data was wiped from his MacBook, iPhone and iPad.

It’s reported that the hackers used a combination of Amazon’s credit card record keeping system and Apple’s user authentication requirements. These two pieces of information, along with some social engineering, gave the hackers access to the iCloud account.

Apple released a statement on Monday saying: “We found that our own internal policies were not followed completely.”

The freeze on Apple ID password changes via its support line has now been put in place whilst Apple determines what security policies, if any, may need to be modified.

Amazon has also announced that it has issued a policy change that fixes the security hole which allowed the hackers access to Honan’s credit card records. It will no longer allow people to call Amazon to change account settings.

Want to receive up-to-the-minute tech news straight to your inbox? Then click here to sign up for the completely free PCR Daily Digest and Newsflash email services. You can also follow PCR on Twitter and Facebook.

Related