Apple will now inform you if your iCloud account has been accessed from the web

Apple will now inform you if your iCloud account has been accessed from the web
Last week, we told you that Apple had added some new security features to iCloud in the midst of the celebrity scandal that engulfed Apple. The tech titan said that it would send warning emails when a customer's iCloud account is accessed by a new device for the first time, or when a customer tries to restore data on a new device. Another event that would cause a warning to be sent, is an attempted change in the iCloud password.

On Monday, Apple announced that it will now notify you via email when your iCloud account has been accessed by a web browser. The problem is that the emails, just like the other email warnings, are sent after the fact. The notice will be sent out even if a specific browser has already been used to access a specific iCloud account. This will probably be a one-time warning for that combination of browser and device.

As you probably know by now, a number of celebrities had pictures that were stored in iCloud, obtained by a hacker. Some of the celebrity names involved in the scandal include Jennifer Lawrence, Vanessa Hudgens, Rihana, Kate Upton, and Hillary Duff.  With Apple rumored to be unveiling a mobile payments platform rumored to be called iPhone Wallet as soon as tomorrow, the last thing that Apple wants its customers to worry about is the security of data trusted to the company.


source: MacRumors via BGR

FEATURED VIDEO

26 Comments

1. rawbow

Posts: 428; Member since: Mar 30, 2012

Good call! But why that photo for the thread?

4. Dumbledora

Posts: 15; Member since: Aug 06, 2014

Read the last paragraph..... She's Jennifer Lawrence.....

12. Commentator

Posts: 3722; Member since: Aug 16, 2011

It's still ridiculous, almost sickening, that EVERY article about this topic (and there have been several) has used a picture of Jennifer Lawrence as their thumbnail. It's like the editors are like "well, since Jennifer Lawrence is the highest-profile victim, we'll keep reminding everyone that there are nude pictures of her out there, because that's what sells."

14. master-mkk

Posts: 214; Member since: Aug 27, 2014

you are right but in the in end this is business

16. Commentator

Posts: 3722; Member since: Aug 16, 2011

And what better way to spur business than to perpetuate the aspect of a story that really shouldn't even be public knowledge anyways? They leaked, she owned up to it, move on. Instead of focusing on what happened, the stories should now focus on what's being done to fix it. This article's title may say they've moved on, but the picture betrays the opposite to be true.

9. Droid_X_Doug

Posts: 5993; Member since: Dec 22, 2010

After-the-fact notices don't do much to stop the hacking attempts. A better approach would be to send a notice after 3 failed login attempts. After the 10th failed login attempt, the account should be frozen with a visit to an Apple store being required to un-freeze the account.

13. McLTE

Posts: 922; Member since: Oct 18, 2011

A trip to the apple store? Why? I would NEVER EVER EVER want that implemented. I should be able to call CS and speak to a human - collect my info and get me my password. Only Apple would be arrogant enough to require you to visit their store to reset a PW. Can you imagine your phone or mortgage company doing this?? lol

15. middlehead

Posts: 454; Member since: May 12, 2014

Forcing a trip to a store is a terrible idea, definitely the dumbest post in this thread. They aren't even in every state in the US, let alone distributed enough for reasonable driving distance. Calling into CS is more than enough.

22. Droid_X_Doug

Posts: 5993; Member since: Dec 22, 2010

Sigh. Have any of you mental midgets heard of social engineering? Hint: it involves building a profile of a target based on publicly available information. Things like the high school you attended, your mother's maiden name, when you were born, name of pets, and, and, and. Paris Hilton was hacked for using the name of her chihuahua - tinkerbelle as her password. When someone on the other end of a customer support line gets a call purporting to be from Paris Hilton and the caller is a female, and answers the security questions correctly, there is presently a presumption that the caller is who they claim to be. This presumption is behind many hacks of celebrity accounts, whether iCloud, or Google Drive, or whatever. While having to go to an Apple store may not be practicable, it doesn't remove the need to physically verify the identity of the person claiming to be who they say they are. Two factor identification (where a one-time password is sent by SMS or e-mail) is one way. But physically eyeballing the person and checking a drivers license or passport is the most secure. If you want security, it doesn't come free.

24. middlehead

Posts: 454; Member since: May 12, 2014

It doesn't come at all if you're going to demand people do something that isn't physically possible for a great number of them. Requiring Apple Store visits is still the dumbest thing said in this thread.

2. xq10xa

Posts: 808; Member since: Dec 07, 2010

cuz everyone saw her boobs

19. tedkord

Posts: 17320; Member since: Jun 17, 2009

I didn't :(

20. darkkjedii

Posts: 30974; Member since: Feb 05, 2011

I did :)

23. xfire99

Posts: 1205; Member since: Mar 14, 2012

More the white sausage that covered all over her face. The highlight of all pic/videos. :)

25. middlehead

Posts: 454; Member since: May 12, 2014

That picture was proven fake.

3. spin9

Posts: 310; Member since: May 31, 2014

Too litle too late. For better or worse, by targeting famous, they made simple people begging for more security.

7. CoastCity

Posts: 257; Member since: Mar 07, 2014

using them in any chance

11. Vinayakn73

Posts: 207; Member since: Oct 05, 2011

but I am feeling so sorry for jenny. she is my favorite actress. pls Don't abuse her

17. johnbftl

Posts: 283; Member since: Jun 09, 2012

Why do you feel sorry for her. Simple solution: if you don't want nude pictures is yourself floating around, don't take nude pictures of yourself.

26. middlehead

Posts: 454; Member since: May 12, 2014

No, the solution is don't store them in any location you don't own.

5. dimas

Posts: 3348; Member since: Jul 22, 2014

"The problem is that the emails, just like the other email warnings, are sent after the fact." So notification is useless because the damage has already done.

6. meanestgenius

Posts: 21798; Member since: May 28, 2014

This something that should have been implemented from the very beginning. However, as others here have already said, too little, too late Apple. By the time you receive the notification, the damage will have already been done. #iFail once again, Apple.

8. alexsupertramp unregistered

what's the point in sending mails after they logged into the cloud..? is it a two step verification method..?

10. Aploine

Posts: 445; Member since: Oct 24, 2013

You force me go and hear some supertramp tonight

18. dirtydirty00

Posts: 428; Member since: Jan 21, 2011

so the email SHOULD read... Your account has been logged in through the web... if it was you, please disreguard this email. If it was not you, hopefully you havent been taking nude pictures of yourself or they will be floating the internet momentarily. Also, please change your password

21. gustavoace

Posts: 187; Member since: Nov 13, 2012

iCloud. You're using it wrong

Latest Stories

This copy is for your personal, non-commercial use only. You can order presentation-ready copies for distribution to your colleagues, clients or customers at https://www.parsintl.com/phonearena or use the Reprints & Permissions tool that appears at the bottom of each web page. Visit https://www.parsintl.com/ for samples and additional information.