facebook
twitter
rss
account
search
search
 

Apple accounts vulnerable to password hack

March 22, 2013 at 9:04 PM   |   Comments

CUPERTINO, Calif., March 22 (UPI) -- Apple says it has suspended the password-reset function for its iCloud and iTunes services in response to reports hackers could exploit it to hijack accounts.

Apple took its password reset page offline a few hours after reports of an online tutorial that provided detailed instructions for taking unauthorized control of Apple accounts, Arstechnica reported Friday.

The hack involved "pasting in a modified URL while answering the DOB security question on Apple's iForgot page," The Verge, which first reported on the tutorial, said.

"It's a process just about anyone could manage, and The Verge has confirmed the glaring security hole firsthand," the website said. "Out of security concerns, we will not be linking to the website in question."

An iCloud or iTunes account was vulnerable if an attacker knew the account-holder's birth date, a piece of information often disclosed on Facebook and other social media, Arstechnica said.

Apple was "aware of the issue, and working on a fix," the company said in a post.

© 2013 United Press International, Inc. All Rights Reserved. Any reproduction, republication, redistribution and/or modification of any UPI content is expressly prohibited without UPI's prior written consent.
Most Popular
1
Next-generation space suits will be like second skin Next-generation space suits will be like second skin
2
Ship sunk off coast of Texas to create artificial reef Ship sunk off coast of Texas to create artificial reef
3
MAVEN space probe to reach Mars this weekend MAVEN space probe to reach Mars this weekend
4
2014 summer was hottest on record, NOAA says 2014 summer was hottest on record, NOAA says
5
U.N. Secretary General Ban Ki-moon to join climate march U.N. Secretary General Ban Ki-moon to join climate march
Trending News
Video
x
Feedback