Reported security hole allows Apple password reset

Updated

A new exploit has been discovered that allows anyone with both your email address and date of birth to reset your Apple password by pasting a modified URL on Apple’s iForgot page, according to a report. Further details about the issue were not provided for security reasons, but the hole was confirmed. Yesterday, Apple added an optional two-step verfication service; users of that service would not be susceptible to the security hole. [via The Verge]

Photo of author

Phil Dzikiy

Phil Dzikiy was the Editor-in-Cheif at iLounge. He mostly edited and oversaw all site editorial content, managed staff and freelancers, made the final call on product review grades and awards, and led online coverage of all Apple events and live coverage of the International CES in 2015.