“More than four months after Tim Cook promised emailed login alerts and the reintroduction of two-factor authentication in the wake of the high-profile celebrity iCloud hacks, five Apple logins remain unprotected by the system,” Ben Lovejoy reports for 9to5Mac.
“Hackers of NY founder Dani Grant used videos to demonstrate each of the vulnerabilities in a blog post,” Lovejoy reports. “Grant showed that two-factor authentication isn’t needed when using an unknown Mac to login to iMessage, iTunes, FaceTime, the App Store or Apple’s website.”
Lovejoy reports, “According to Grant, only one of the five services [FaceTime] sent an email notification advising that an unknown device was used to log in.”
Read more in the full article here.
Open letter to Tim Cook: Apple needs to do better – January 5, 2015
Tim Cook: Apple will broaden its use of two-factor authentication – September 5, 2014