Following last weekend's celebrity photo data theft, Apple's CEO, Tim Cook has spoken out about what can be done to better increase the security and protect the privacy of their customers. The steps include sending notifications for account changes, backup restores, and new device logins; broadening the deployment of two-step verification; and to ramp up efforts to educate customers about the dangers of social engineering and phishing attacks, and the importance of strong passwords. The latter of those steps was emphasized when Cook reaffirmed that iCloud servers hadn't been hacked, the individual accounts were hacked. The Wall Street Journal:
When I step back from this terrible scenario that happened and say what more could we have done, I think about the awareness piece. I think we have a responsibility to ratchet that up. That's not really an engineering thing.
We want to do everything we can do to protect our customers, because we are as outraged if not more so than they are.
While alerts don't help prevent attacks, they do help mitigate them. Customers receiving account notifications will be able to change passwords and even alert Apple's security team. That service should start rolling out in two weeks.
Cook also emphasized what most of us already know — Touch ID, for example, never leaves the Apple A7 secure enclave and is never stored on iCloud or any server, so fingerprint data can't be compromised online. If, as rumored, Apple rolls out a new mobile payments feature alongside the iPhone 6 and iWatch, it's expected that will tie into a new secure enclave on the new Apple A8 system-on-a-chip.
Apple has also informed developers that HealthKit data cannot be stored on iCloud, and any app trying to do so will be rejected from the App Store.
Hopefully Apple will also replace "security questions" with something less susceptible to social engineering attacks. (Unless/until that happens, fill those fields with strong passwords as well, and store those passwords securely.)
These are good next-steps from Apple, especially with the iPhone 6 event coming up in less than a week. Especially good having Tim Cook do it interview style rather than simply issuing another media advisory.
What do you think of Tim Cook's response? Any other steps you'd like to see taken by Apple?
Source: The Wall Street Journal
We may earn a commission for purchases using our links. Learn more.
FAQ: TikTok & WeChat ban — why it’s happening and what it means for you
Are TikTok and WeChat really being banned? When does all of this take effect? Will I still be able to use these apps? All this and more answered in our FAQ regarding the latest U.S. orders.
Plan your day with Hour Blocks and its amazing iOS 14 Home screen widgets
Planning your day is no fun but sometimes you find an app that goes some way to making it less boring. Hour Blocks does a decent job and it looks lovely, too.
Scribble Together gets the coolest iOS 14 App Clip we've seen so far
Scribble Together has released its new App Clip for Scribble Together, which will allow users to collaborate on a Scribble Together whiteboard even if they don't have the app.
These HomeKit cameras work with iOS14's Face Recognition and Activity Zones
iOS 14 brings some powerful new capabilities to HomeKit Secure Video-enabled cameras like Face Recognition and Activity Zones. Here's all of the cameras and doorbells that support the latest and greatest HomeKit features.