"Hey Siri" support and possibly wireless charging case alongside AirPower charging mat.
Tim Cook: Apple to Add Security Alerts for iCloud Users, Broaden Two-Factor Authentication
Apple will add security alerts for iCloud users, broaden two-factor authentication and make a more aggressive effort to alert users about protecting their accounts, Apple CEO Tim Cook told the Wall Street Journal in his first interview since the recent hacking incident involving celebrities' iCloud accounts.
To make such leaks less likely, Mr. Cook said Apple will alert users via email and push notifications when someone tries to change an account password, restore iCloud data to a new device, or when a device logs into an account for the first time. Until now, users got an email when someone tried to change a password or log in for the first time from an unknown Apple device; there were no notifications for or restoring iCloud data.Cook said the new notifications will begin in two weeks and will allow users to take action on potential hacking immediately, allowing them to either change the password to retake the account or alerting Apple's security team. Cook echoed Apple's previous press release on the hackings, stressing that the best prevention for future incidents are more human than technological.
"When I step back from this terrible scenario that happened and say what more could we have done, I think about the awareness piece," he said. "I think we have a responsibility to ratchet that up. That's not really an engineering thing."Apple will also broaden use of its two-factor authentication system, allowing it to also cover access to iCloud accounts from mobile devices like iPad and iPhone. Cook said the majority of Apple's users don't use two-factor authentication, so the company is planning on aggressively getting its users to turn on the feature. Cook also mentioned that had the celebrities been using two-factor verification, the hackers would not have been able to guess their security questions.
Apple has previously explored expanding two-factor authentication to some iCloud services, but an official expansion of the feature had not yet been introduced.
Tag: Tim Cook
[ 203 comments ]
Top Rated Comments
(View all)
57 months ago
They should have thought this ahead before the damage is already done.
This type of poor management of sensitive data reminds me of Microsoft, ie; Damage control policy, let the bad things happen then look for ways to prevent them from happening again.
Yea and they should have thought about smoking being bad before millions of people died from it. What more do you want? They already have 2-step verification. The more alerts the better.
57 months ago
Sounds like a typical case of users using weak passwords (which most users tend to do) and hackers using common words to guess them. Amazing that with all the attempted hacking and identity theft and such going around that people still refuse to use complex passwords and security features. Especially celebrities.
57 months ago
Glad that Tim Cook himself is speaking up and Apple is actually showing responsibility by making changes to security. Old Apple under Steve Jobs would stonewall for as long as possible, hoping that the story would go away.
Tim Cook is a fantastic CEO this way. He has done a great job at saying "hey, we screwed up" when they have (and even if they haven't), and saying "hey, we agree, things could be better and we're going to make sure they are."
57 months ago
They should have thought this ahead before the damage is already done.
This type of poor management of sensitive data reminds me of Microsoft, ie; Damage control policy, let the bad things happen then look for ways to prevent them from happening again.
This type of poor management of sensitive data reminds me of Microsoft, ie; Damage control policy, let the bad things happen then look for ways to prevent them from happening again.
57 months ago
So when the so called hacker is already restoring all the data to a phone or a forensic program all we get is an e-mail telling us "hey all your dumb selfies are being downloaded by an unknown person"?
Not if you enable 2-factor authentication. Then they will not be able to change your password, so they won't be able to get at your iCloud data.
Also, as the article said, Apple is also going to expand 2-factor authentication so, presumably, even if you know someone's password, you STILL won't be able to restore/slurp their iCloud backups without also having access to one of their trusted devices.
Most importantly, he points out that most of their customers CHOOSE not to use 2-factor authentication. (Which is THE CUSTOMER'S FAULT, not Apple's.) And they are going to start harassing customers to smarten up and use it.
There is nothing more Apple can do than that.
57 months ago
They need to halt the restore until you authorize the action either with trusted device or secure backup key... Notification after the fact, is of questionable value...
57 months ago
So when the so called hacker is already restoring all the data to a phone or a forensic program all we get is an e-mail telling us "hey all your dumb selfies are being downloaded by an unknown person"?
57 months ago
What about the people whose photos were stolen from non-Apple devices? After all, this recent leak is not an Apple story at all, it's a broad Internet and cloud story.
Tim should speak on this, and Apple should improve. The rest of the industry should too.
Tim should speak on this, and Apple should improve. The rest of the industry should too.
57 months ago
Glad that Tim Cook himself is speaking up and Apple is actually showing responsibility by making changes to security. Old Apple under Steve Jobs would stonewall for as long as possible, hoping that the story would go away.
57 months ago
Most importantly, he points out that most of their customers CHOOSE not to use 2-factor authentication. (Which is THE CUSTOMER'S FAULT, not Apple's.) And they are going to start harassing customers to smarten up and use it.
It is Apple's fault when they don't even support 2-factor authentication in every country that they sell the iPhone.
----------
2-step authentication? Just use a private key (a.k.a. password) that's strong. It's mathematically proven. Your own stupid fault if you make your password weak.
Guess what? Most of the hack attempts were done because they answered a few security questions. They didn't need to know the user's password.
[ Read All Comments ]
What is AirPower?
AirPower is an Apple-designed charging mat designed to charge Qi-based iPhones, the Apple Watch, and the AirPods, using a specially designed and as-of-yet unreleased wireless...
Apple in iOS 12 introduced a new Live Listen feature that's designed to turn the iPhone into a remote microphone for the AirPods.
Live Listen has been around for years for MFi-compatible...
Apple must pay VirnetX $440 million after an appeals court upheld an earlier judgement in favor of the patent holding company, reports Reuters.
The U.S. Court of Appeals for the Federal...
This week is seeing notable discounts hit Pad & Quill's leather iPhone cases, Apple Watch Series 3 at Best Buy, brand-new 4K films on iTunes, and much more.
At Pad & Quill this...
Netflix today announced that it will raise the prices for all of its subscription tiers, the latest price hike since November 2017. Specifically, the cheap "Basic" tier will rise from $8...
Verizon subscribers with an iPhone or Android smartphone and a Beyond Unlimited or Above Unlimited data plan will soon have unlimited access to Apple Music at no additional cost, according to...
Kano, the company known for its range of products designed to teach coding to kids and adults alike through innovative coding projects, today announced a new two-year partnership with Disney.
...
Following in the footsteps of Google Assistant and Amazon Alexa, Pandora today launched its own voice assistant available within its iOS and Android apps. When the app is opened, users can turn on...
