“Apple’s iForgot password reset page is now back online, and iMore has verified that the security hole, discovered earlier today in Apple’s password reset page, has been closed,” Nick Arnott reports for iMore.
“This vulnerability came at an interesting time, just a day after Apple began to roll out its two-step verification system,” Arnott reports. “Users who had already enrolled in the new system seem to have been immune from the password reset vulnerability.”
Arnott reports, “Today’s events serve as an important example of why two-step verification is a good idea. People interested in getting two-step verification set up can find out how with iMore’s tutorial.”
Read more in the full article here.