Linked by Thom Holwerda on Mon 1st Apr 2013 12:25 UTC
Apple "Last Friday, The Verge revealed the existence of a dead-simple URL-based hack that allowed anyone to reset your Apple ID password with just your email address and date of birth. Apple quickly shut down the site and closed the security hole before bringing it back online. The conventional wisdom is that this was a run-of-the-mill software security issue. [...] It isn't. It's a troubling symptom that suggests Apple's self-admittedly bumpy transition from a maker of beautiful devices to a fully-fledged cloud services provider still isn't going smoothly. Meanwhile, your Apple ID password has come a long way from the short string of characters you tap to update apps on your iPhone. It now offers access to Apple's entire ecosystem of devices, stores, software, and services."
Thread beginning with comment 557262
To view parent comment, click here.
To read all comments associated with this story, please click here.
RE[2]: Ironic
by Drumhellar on Mon 1st Apr 2013 15:03 UTC in reply to "RE: Ironic"
Drumhellar
Member since:
2005-07-12

I was writing an email to Adam thinking it was a bug when it occurred to me that it was probably an April Fool's joke. I made note of it in the email, and sent it anyways, before I tried one of the links on the side.

It was 8:30pm local time when I noticed it, so it was still kinda early for me to connect it to the date.

Reply Parent Score: 2