Print 18 comment(s) - last by Sal24.. on Aug 9 at 2:41 PM

Both responded to the hack by making changes to how users update account information and reset passwords

After journalist Mat Honan had his accounts hacked earlier this week due to Apple and Amazon's respective security flaws, the two tech giants have changed (or started to change) their policies.

Earlier this week, Honan found that someone had hacked into his Gmail, Twitter, Amazon and Apple iCloud accounts. That someone was a 19-year-old referred to as "Phobia" (along with an unknown accomplice), and they were able to do this through security loopholes in both Apple and Amazon's systems.
Just yesterday, the Wired crew discovered that Amazon had quietly changed its privacy policies in wake of what happened. Users are no longer allowed to add new credit cards or change any other account settings over the phone.

That same day, Wired journalists contacted Apple customer care to see if they could replicate what the hackers did to Honan. As it turns out, Apple has frozen AppleID password resets over the phone. It's not clear if this is a temporary freeze just while Apple figures out a new security policy, or if it's a permanent move.

Events like this are enough to scare those with any significant online presence to take extra precautions with security. As Honan reported in his Wired piece, he likely wouldn’t have been hacked to such disastrous results had he enabled Google’s 2-Step verification for his account.
Facebook offers a similar feature to help lockdown your account.

Sources: Wired [1], [2]

Comments     Threshold

This article is over a month old, voting and posting comments is disabled

RE: now DailyTech needs to follow suit
By JasonMick on 8/8/2012 2:59:59 PM , Rating: 2
What's the deal dailytech???
That's crazy...

Are you sure you typed the URL right?

Can you try to verify this via a bookmark?

In other words, if you type ('v' being next to 'c') we may not own that domain and some malicious website may have camped there, given the similarity. Of course, you can report such websites to me and I'll funnel that along to our tech/PR folks to try to send out a takedown notice.

My contact info is available under the articles I write, please let me know some more details and I can look into this for you... this shouldn't be happening EVER.

RE: now DailyTech needs to follow suit
By sigmatau on 8/8/2012 7:50:31 PM , Rating: 2
It's Java I do believe. If your antivirus can't catch it after a scan, download MS Security Essentials, it cleaned it off my laptop. I do believe it popped up also while on this website.

It's a Rogue:JS/FakePAV with Severe alert. Trojan.

Check your Java also.

By sigmatau on 8/8/2012 7:54:37 PM , Rating: 2
Oh, and run all updates for Windows.

By kleinma on 8/9/2012 2:20:38 PM , Rating: 2
I was not able to find your contact info on your last few recent articles. Unless I am missing something.

By Sal24 on 8/9/2012 2:41:39 PM , Rating: 2
I can confirm I've had this happen to me. I'm an IT professional and fully aware of what these type of things look like. I keep a fully patched Win7, MSE, and refuse to install java for security reasons. I also don't use adblock.
I was re-directed to a site trying to tell me I was infected, the kind of virus that requires user intervention to install it. You can naviagate away from the page and not get a virus. If it happens again I'll snap a screen shot, but its only happened once. I like DailyTech and this is not an anti-DailyTech thing. Just confirming that kleinma is not out of his mind.

"This is from the It's a science website." -- Rush Limbaugh
Related Articles

Most Popular ArticlesTop 5 Smart Watches
July 21, 2016, 11:48 PM
Free Windows 10 offer ends July 29th, 2016: 10 Reasons to Upgrade Immediately
July 22, 2016, 9:19 PM

Copyright 2016 DailyTech LLC. - RSS Feed | Advertise | About Us | Ethics | FAQ | Terms, Conditions & Privacy Information | Kristopher Kubicki