questionsdid anyone else see how easy it is to do a hack…

vote-for39vote-against
vote-for14vote-against

It never made any sense to me that apple was safer than a pc. Especially now that there are so many apples. I guess now it isn't .

vote-for4vote-against

@dontwantaname: Except they've already turned the feature off. No waiting for "patch Tuesday".

http://www.macgasm.net/2012/08/08/apple-suspends-icloud-password-via-the-phone-resets-after-hack/

edit: That may have sounded confrontational. It wasn't meant that way. Mac, Windows...there's really not a lot of difference any more.

vote-for7vote-against

Good thing I don't have a credit card on file with Apple then.

vote-for1vote-against

@dontwantaname: You may have misunderstood the issue. This was a hacking of his Apple ID -- not his personal Apple branded computer.

Apple OS is safer than Microsoft OS for a couple reasons. First, Microsoft OS has so many shared DLL files that need to be updated and several of them can contain a virus during an update when you install an application.

On an Apple OS, the system files are protected from being overwritten. You need to have the administrator password to update those files making it difficult for a virus to change any of those files.

Then you have more people using Microsoft OS than Apple OS so people wanting to infect a larger number of people will try to attack systems that have a larger footprint.

vote-for6vote-against

@cengland0: You have misunderstood the issue. His apple branded computer was wiped as a result of hacking the apple ID. If you have iCloud turned on and Find My Computer turned on, then this could have happened to you. I'd say that counts as hacking his computer at least in the loose sense that calls this password reset "hacking"

vote-for1vote-against

@omnichad: Folks, this is social engineering -- not computer hacking. Nor is it a problem with Apple computers.

I have several Apple computers running Apple OSX and none of them have any anti-virus software installed. I've never had a virus nor have any of them been hacked. Let's see you try to disable or wipe my computer -- I seriously doubt you can.

Hacking into remotely controlled systems (Google, Amazon, iCloud, etc) is not the same thing as hacking into my computer at home. Are those systems using Apple OS or Microsoft OS? In other words, the fact that someone was able to get information from Amazon does not mean Apples are more vulnerable than PC's.

So let's say that I call you and convince you that I'm a technician and also convince you to give me full access to your computer with remote access and passwords. Does that make the OS unsafe or were you the stupid one?

vote-for8vote-against

@cengland0: You are very very incorrect here.

Ever since Vista, Windows systems require an administrator password to update system files. Just like OSX. Funny, though, that Apple ads made fun of this feature. And Apple does make it very easy to turn it off, leaving your computer exposed.

Apple has been enjoying security through obscurity, low number of the OS. Now numbers are creeping up, and Win 7 is surprisingly difficult to hack. The lack of security software on OSX systems and (as thie episode shows) users belief that "I've got an Apple, I can't be hacked" makes OSX systems and users significant targets. Apple's arrogance means they deny flaws in their OS, release patches far slower than MS, and do not elaborate on what they fixed.

The bit of social engineering here was an offshoot of that. Apple's policies were flawed, and their phone security was far below what it should have been. (cont)

vote-for9vote-against

Clearly, the user had an unrealistic view of how safe he was. He was also unaware of how tied together (via the Apple universe) his data had become, and how one password/user id combination could take it all out. The victim here gets the majority of the blame but Apple should take some of the hit here for encouraging users to rely only on iCloud and their poor security measures.

This would not have been such a horrible loss had the user kept a local backup. This should be a lesson to all: 3-2-1. Three copies of a file. Two different media. One (at least) offsite. Example:
Primary copy on computer (1). Backup to local removable hard drive (2). Cloud backup (3, and counts both as a differnt media and offsite).