New in OS X: Get MacRumors Push Notifications on your Mac

Resubscribe Now Close

Apple Enhancing Apple ID Safety by Enforcing Security Question Requirements

Thursday April 12, 2012 8:53 am PDT by Eric Slivka
The Next Web reports that Apple has begun enhancing the security of users' Apple ID accounts, requiring those who have do not have alternate email addresses and security questions on file to add them.
In the past 24 hours, Apple appears to have started prompting iOS devices owners and those with Apple IDs within iTunes to make their accounts more secure, requiring them to pick three security questions and enter their answers when they download a new app.

The company is also asking users to enter a backup email address, in order to better protect their device but also their account (which is tied to Apple’s Retail website and all of its media services).

Hacking of iTunes Store accounts has been a long-standing complaint from a number of users, but with over 225 million user accounts, they make for a popular target for phishing, brute force hacking, and other methods. The company has occasionally taken steps to improve account security such as last August's addition of confirmation emails when content is purchased from a previously-unused device, and the company undoubtedly evaluates its security practices on an ongoing basis.

[ 98 comments ]


Top Rated Comments

(View all)

Avatar
eyebex
97 months ago
Hey, I went to tangerine trees.
Rating: 19 Votes
Avatar
miles01110
97 months ago


Do users realize that the best strategy is to give non-sequitur responses to this kind of question: The first school you attended was: tangerine trees.


Right, because inevitably your first reaction to your security questions after you forget your password is "Why yes, my first school was tangerine trees." :rolleyes:
Rating: 16 Votes
Avatar
3282868
97 months ago
How about combining multiple ID's? It'd be nice as over the years many have used different email addresses, etc. and having to enter/authorize all of them is a PITA.
Rating: 14 Votes
Avatar
MasterHowl
97 months ago

How about, who needs this added security. Annoying.


It would be more annoying if your Apple ID got hacked :p
Rating: 13 Votes
Avatar
FloatingBones
97 months ago
Does Apple suggest that you not put answers to your security questions that can be looked up from public sources -- like a Facebook account? :rolleyes:

Do users realize that the best strategy is to give non-sequitur responses to this kind of question: The first school you attended was: tangerine trees.
Rating: 12 Votes
Avatar
dethmaShine
97 months ago

Does Apple suggest that you not put answers to your security questions that can be looked up from public sources -- like a Facebook account? :rolleyes:

Do users realize that the best strategy is to give non-sequitur responses to this kind of question: The first school you attended was: tangerine trees.


The question is: Do you actually put in right answers for these questions? Obviously, I don't.
Rating: 5 Votes
Avatar
bgillander
97 months ago

I get the reason behind extra security for new devices and like the way Apple (and many other companies) have been doing this.

But having to to type in multiple extra responses beyond your account password simply to update an existing or new app on an existing device is ridiculous.

They better start doing a lot better job QAing apps to minimize updates or its going to drive business away.


Distinguishing between a new purchase and an update makes the most sense to me.

I don't see why updates even require the password. Is there any risk just allowing updates to occur as soon as you push the "update all" button? The apps are already on the device. Do I really want the downloads interrupted half way through with a dialog for one of the apps asking me to confirm that I'm still over 18? Is there anyone using Apple products that ages in reverse?

I agree with the extra security questions for any new purchase, however.
Rating: 5 Votes
Avatar
GSPice
97 months ago
It's sad how the terms "hack", "hacked", "hackers" have been mutilated with the advent of online accounts. :(
Rating: 5 Votes
Avatar
Blorzoga
97 months ago

Does Apple suggest that you not put answers to your security questions that can be looked up from public sources -- like a Facebook account? :rolleyes:

Do users realize that the best strategy is to give non-sequitur responses to this kind of question: The first school you attended was: tangerine trees.


Tangerine Trees!? What year did you graduate?
Rating: 5 Votes
Avatar
Shrink
97 months ago

Great... Another hoop I have to jump through just because people are dumb enough to keep falling for phishing attempts that ask them for their login details!

You people deserve what you get :mad:


You know, you're absolutely right. Why should you have to go to all that horrible, burdensome trouble just because there are many people not as incredibly sophisticated as you.

Yup, all those people who just enjoy using iOS devices, but are not wise to the ways of the electronics, deserve to get ripped off. No, actually, they deserve to have their iPads and iPhones taken away from them!

Ah, hell, just kill the *******s so you won't be inconvenienced.

Yup, I feel your pain...all that bother for security that you don't need.

:rolleyes:
Rating: 4 Votes

[ Read All Comments ]