Well, Safari already auto-suggests and auto-saves its own passwords...
Just need to get idiots to stop using Chrome and Firefox.
No worries here! I've had two factor enabled for quite some time now.
Apple's implementation of two-factor only protects certain iCloud services. In particular, two-factor protection does not extend to photo streams (http://techcrunch.com/2014/09/02/apples-two-factor-authentication-doesnt-protect-icloud-backups-or-photo-streams/).
ifij775 wrote: »
Can we finally put user generated passwords to rest as a useless security mechanism?
So, apparently according to one person looked at this with some depth (https://www.nikcub.com/posts/notes-on-the-celebrity-data-theft/), celebrity data theft is something that goes on all the time. Usually, these thing don't become public, because they are worth money, and in general only people who pay get to see it.
Now we know where some of Samsung's enormous marketing budget went.
sflagel wrote: »
If I ever saw an excellent use case for a smart iWatch, it is to send instant two-factor verification codes at every login! That would make iCloud super secure!
Marvin wrote: »
Companies like Google have come up with ideas like wearing jewellery or swallowing an authentication pill to use as a security token but I don't think those are very practical. I think the way forward is to use encryption key pairs, possibly multiple keys.... etc
sirlance99 wrote: »
Apple tells everyone they didn't have a "Breach" in any of their systems. So I guess letting brute force scripted password attacks happen on multiple accounts without any notification to the users, Apple network monitors, system admins, etc. is not considered a breach of security or security flaw.. But yet they also admit this is an "all too common" practice on the internet. Hmm.. ?
hill60 wrote: »
Why not use the answers to the questions you'd like to write?
There's less chance of guessing nonsensical answers that don't relate to the questions.
gatorguy wrote: »
There may be more to the story than Apple was willing to discuss.
"If a hacker can obtain a user’s iCloud username and password with iBrute, he or she can log in to the victim’s iCloud.com account to steal photos. But if attackers instead impersonate the user’s device with Elcomsoft’s tool, the desktop application allows them to download the entire iPhone or iPad backup as a single folder, says Jonathan Zdziarski, a forensics consult and security researcher. That gives the intruders access to far more data, he says, including videos, application data, contacts, and text messages.
On Tuesday afternoon, Apple issued a statement calling the security debacle a “very targeted attack on user names, passwords and security questions.” It added that “none of the cases we have investigated has resulted from any breach in any of Apple’s systems including iCloud® or Find my iPhone.”
But the conversations on Anon-IB make clear the photo-stealing attacks aren’t limited to a few celebrities. And Zdziarski argues that Apple may be defining a “breach” as not including a password-guessing attack like iBrute. Based on his analysis of the metadata from leaked photos of Kate Upton, he says he’s determined that the photos came from a downloaded backup that would be consistent with the use of iBrute and EPPB. If a full device backup was accessed, he believes the rest of the backup’s data may still be possessed by the hacker and could be used for blackmail or finding other targets. “You don’t get the same level of access by logging into someone’s [web] account as you can by emulating a phone that’s doing a restore from an iCloud backup,” says Zdziarski. “If we didn’t have this law enforcement tool, we might not have the leaks we had.”
The iWatch has a built in permanent biometric sensor that works only if you wear it.
The iWatch can have a built in biometric sensor that notices whether you are wearing it or someone else. A combination of temperature, blood pressure, skin pressure, etc
Links for your claim?
And hardly sexist, I am an equal opportunity mocker of celebrity idiots. I can think of plenty of male celebrities that would have been included had this most recent issue included male celebrities...
I don't know or have an opinion on this latest "scandal" but having originally been taken on a Blackberry is no proof that it was not on someone's iPhone and in iCloud. I have photos in my camera roll on my iPhone that date back to my original 2007 iPhone as well as ones taken with other devices/cameras.
There must be something more... AAPL drops over 4%.
ipen wrote: »
There must be something more... AAPL drops over 4%.
So iCloud is safe and secure...unless you're targeted and don't have 2-step verification enabled?
Well I for one had no idea if I had it enabled or how to enable two-step verification until recently and I'm hardly a typical Apple user so I'd love to know what the average adoption rates of two-step verification are. I never even noticed a prompt to enable it until signing in to Yosemite public beta.
Rather than be so pompous and arrogant all the time maybe Apple should take the opportunity to push two-step verification harder or even make it mandatory!
palomine wrote: »
Last night on MSNBC (Lawrence O'donnel show ) there was an interview with a Buzzfeed rep, already forgot his name. It was worthy of a slander suit, seriously. I don't think he weaseled enough, and left himself wide open to legal action from Apple. Is Buzzfeed invited to the Sept 9 event? They shouldn't be. Assholes.
Good god I am sick of the manipulation that goes on in this stock. One of these days Samsung is going to really step in it and destroy their own reputation.