HardOCP News
[H] News
- Joined
- Dec 31, 1969
- Messages
- 0
It's kinda obvious Apple doesn't care. If they did, they would have done something about this a long time ago. Right?
![[H]ard|Forum](/styles/hardforum/xenforo/logo_dark.png){kind=logo}
iCloud Isn't Safe And Apple Doesn't Care
- Thread starter HardOCP News
- Start date
But the shed locks all by itself! That's what the ad says.
Darunion
Supreme [H]ardness
- Joined
- Oct 6, 2010
- Messages
- 5,338
If they forced everyone into two factor authentication, people would just rise up in arms about how inconvenient the extra security is...
Truth is, the average person doesn't want security, they want a simple password they use for every single account that is easy to guess.
I do feel Apple should look into stopping brute force attacks with an account lockout duration, I would rather have to unlock my account than find out it was downloaded by someone else. (shrugs) I guess we will just blame everyone but the people responsible for the attack.
Truth is, the average person doesn't want security, they want a simple password they use for every single account that is easy to guess.
I do feel Apple should look into stopping brute force attacks with an account lockout duration, I would rather have to unlock my account than find out it was downloaded by someone else. (shrugs) I guess we will just blame everyone but the people responsible for the attack.
Darunion
Supreme [H]ardness
- Joined
- Oct 6, 2010
- Messages
- 5,338
FFS I have seen many companies ive worked for that use keypad access for the entrances and still have 0000 or 1234 or address as 'generic' key to use 
Insula Gilliganis
[H]ard|Gawd
- Joined
- Feb 6, 2007
- Messages
- 1,469
iCloud = more racy pics of famous ladies available on the Internet..
and what is the problem exactly??
and what is the problem exactly??
flashoverride
Limp Gawd
- Joined
- Dec 10, 2013
- Messages
- 496
But... but securing it means money!
And everyone knows that Apples are like, more secure. Duh. Just, like, because.
And everyone knows that Apples are like, more secure. Duh. Just, like, because.
hackers presenting at the black hat conference have been revealing how laughably vulnerable osx has been for years. the problem is that the mainstream tech press almost never covers these stories, probably because they're so goddam enamored with apple products. there's always some client who comes at me with that retread question, "...aren't macs safe than windows?" and i tell them, yes windows is constantly patching vulnerabilities in its operating system. the fact that apple isn't updating osx every month doesn't necessarily mean that its safer. it might actually mean that apple is choosing not to do anything about its vulnerabilities until it absolutely has to.
The difference is, they had bad security before but no one really talked about it like this. This is damaging. Kids won't care, but they don't pay the bills. Their parents will care, they also happen to pay the bills.
LurkerLito
2[H]4U
- Joined
- Dec 5, 2007
- Messages
- 2,704
Again, it doesn't matter at all what happens. You use any cloud based service and you already have no claim to anything if they get breached. That ToS you clicked "I agree" too tells you exactly that in legalese.
Let me translate it for you:
"If other people gain access to your data without your permission it is YOUR fault not OURS. You may not sue us even if every one of you motherf**kers want to because we said you can't. But just to show you we care, we'll let you complain to some third party that we hired who will always rule in our favor if they want to keep being hired by us in the future. The supreme court of the US of A says these agreements that 90% of the population don't read or understand are legal so go f**k off."
Bottom line, if you want your data kept private, don't put it online. Nothing online is private.
Let me translate it for you:
"If other people gain access to your data without your permission it is YOUR fault not OURS. You may not sue us even if every one of you motherf**kers want to because we said you can't. But just to show you we care, we'll let you complain to some third party that we hired who will always rule in our favor if they want to keep being hired by us in the future. The supreme court of the US of A says these agreements that 90% of the population don't read or understand are legal so go f**k off."
Bottom line, if you want your data kept private, don't put it online. Nothing online is private.
TechLarry
RIP [H] Brother - June 1, 2022
- Joined
- Aug 9, 2005
- Messages
- 30,481
The Apple fear amongst this group is STRONG!
You stumbled upon the answer right there.
Customer awareness (how many fucks are given)
Speaking with your wallet (how you enforce the fucks actually given)
Ashbringer
Supreme [H]ardness
- Joined
- Jan 25, 2010
- Messages
- 5,522
MrCaffeineX
[H]ard|Gawd
- Joined
- Aug 22, 2011
- Messages
- 1,604
I always think of Charlie Miller's quote when the topic of which platform is the most secure comes up, "Mac OS X is like living in a farmhouse in the country with no locks, and Windows is living in a house with bars on the windows in the bad part of town."
There is an awful lot of Apple hate on these forums, so I don't expect that to change any time soon. Having said that, there is legitimate criticism to be levied here, but as others have suggested, the two-factor authentication method will likely discourage more users within the ecosystem than it will garner praise from the minority of security-conscious within the Apple community. That leaves things as they are.
Also, to be fair, all platforms have challenges to face with respect to hackers. In several hacking competitions Windows has actually proven to be the most secure, which is a fact that likely factored into Charlie Miller's opinion on the matter. The takeaway from all of these major hacks is that any sufficiently popular platform is a likely target, just as Facebook and Twitter have been in the past, or MySpace/Hotmail before that. It is the same reason that recent credit card hacking schemes have targeted enormous retailers like Target and Home Depot: the potential to get more information increases with the size of the target (perhaps some pun was intended there, subconsciously).
In order to combat these things, steps must be taken to enhance security, but this almost always comes at the expense of usability. Given the bottom-line nature of business in general in this country, the possibility of alienating customers is often too high a price to pay when damage control is likely less impactful on said bottom-line.
There is an awful lot of Apple hate on these forums, so I don't expect that to change any time soon. Having said that, there is legitimate criticism to be levied here, but as others have suggested, the two-factor authentication method will likely discourage more users within the ecosystem than it will garner praise from the minority of security-conscious within the Apple community. That leaves things as they are.
Also, to be fair, all platforms have challenges to face with respect to hackers. In several hacking competitions Windows has actually proven to be the most secure, which is a fact that likely factored into Charlie Miller's opinion on the matter. The takeaway from all of these major hacks is that any sufficiently popular platform is a likely target, just as Facebook and Twitter have been in the past, or MySpace/Hotmail before that. It is the same reason that recent credit card hacking schemes have targeted enormous retailers like Target and Home Depot: the potential to get more information increases with the size of the target (perhaps some pun was intended there, subconsciously).
In order to combat these things, steps must be taken to enhance security, but this almost always comes at the expense of usability. Given the bottom-line nature of business in general in this country, the possibility of alienating customers is often too high a price to pay when damage control is likely less impactful on said bottom-line.
I can imagine mentioning this to Apple owning folks I know and them saying "well you know they say you should never upload anything like that to the cloud anyway so it's not a problem!"
I remember them saying the same thing when Macbooks didn't come with DVD burner capability when every other laptop did, "well you know only movie makers need DVD burning capability so it's not a problem!"
Denial is a terrible thing.
I remember them saying the same thing when Macbooks didn't come with DVD burner capability when every other laptop did, "well you know only movie makers need DVD burning capability so it's not a problem!"
Denial is a terrible thing.
flashoverride
Limp Gawd
- Joined
- Dec 10, 2013
- Messages
- 496
So we'll boil this down to: Huh, someone having unfettered access to everything I do with my phone? Still not worth a few more keystrokes.
YOLO CLOUD4LYFE LOLZ!
MrCaffeineX
[H]ard|Gawd
- Joined
- Aug 22, 2011
- Messages
- 1,604
Pretty much. Apple's marketing just so happens to be very appealing to the technologically ignorant. An unfortunate side effect of that is that Apple has to make their products usable by said crowd. This garners them market share in a market segment that has more money to burn than common sense, but also forces them into the situation where they have to account for the lowest common denominator when making decisions.
d50man
2[H]4U
- Joined
- Jan 22, 2002
- Messages
- 2,803
So they want to bank with your debit and credit accounts on the phone for purchases after this????
yep. side channel attacks on RFID be damned.
lol this is good, my post alone will get a lot of people angry, but like I said yesterday people shouldn't be uploading anything to any cloud this kind of stuff should be locked up at there house.
On a related note to the article Steve posted, check this out:
Five reasons why celebrities and civilians should never trust Apple with nude photos, or any data at all.
Five reasons why celebrities and civilians should never trust Apple with nude photos, or any data at all.
HardOCP News
[H] News
- Joined
- Dec 31, 1969
- Messages
- 0
The photo used in this article just about sums up the general populations understanding of cyber security.
http://finance.yahoo.com/news/originalguy-full-story-icloud-hacker-081044692.html
http://finance.yahoo.com/news/originalguy-full-story-icloud-hacker-081044692.html
That's a perfect analogy, lol!
If anything, I hope this brings to light Apple's hubris and in many cases outright lying, as well as their total disregard for users. Apple for the most part is extremely reluctant to admit any wrongdoing, let alone fixing them. They do so after extreme bad publicity (like Antenna Gate, Maps) and months of denial. They have a kludged up OS that's insecure and performs worse, yet is shiny and sells because of captive hardware.
Ironically, celebs are a preferred Apple niche, and yet they will still continue buying and supporting Apple because they're too dumb.
Ironically, celebs are a preferred Apple niche, and yet they will still continue buying and supporting Apple because they're too dumb.
Pretty much, allowing unlimited attempts without any notifications was the cause.
mutantmagnet
Limp Gawd
- Joined
- Mar 13, 2009
- Messages
- 267
iCloud = more racy pics of famous ladies available on the Internet..
and what is the problem exactly??
Red Squirrel
[H]F Junkie
- Joined
- Nov 29, 2009
- Messages
- 9,211
Considering this happened all at once there's got to be something to it. If it was really just guessing of passwords this would have been going on a bit over time, not all at once.
If anything they need to at least have some kind of brute force protection. It amazes me how so many online systems don't have this.
If anything they need to at least have some kind of brute force protection. It amazes me how so many online systems don't have this.