funsec mailing list archives

Re: Apple's faith-based security taking a hammering

From: Valdis.Kletnieks () vt edu
Date: Wed, 14 Sep 2011 12:41:30 -0400

On Wed, 14 Sep 2011 10:40:22 EDT, Joel Esler said:

My thought behind the whole thing is that iTunes accounts are getting hacked 
by brute force of the password.


There are indications that at least some are being done via phishing, and there have
been complaints about the fact that iTunes passwords get cached - which means
that if you enter the iTunes password for one purpose and then your kid is playing
with the device, the app can zing you for a second transaction without the kid
having to enter the password again.

Attachment: _bin
Description:

_______________________________________________
Fun and Misc security discussion for OT posts.
https://linuxbox.org/cgi-bin/mailman/listinfo/funsec
Note: funsec is a public and open mailing list.

Current thread:

Apple's faith-based security taking a hammering Jeffrey Walton (Sep 13)
- Re: Apple's faith-based security taking a hammering Joel Esler (Sep 13)
  - Re: Apple's faith-based security taking a hammering Nick FitzGerald (Sep 13)
    - Re: Apple's faith-based security taking a hammering Joel Esler (Sep 13)
    - Re: Apple's faith-based security taking a hammering Valdis . Kletnieks (Sep 13)
    - Re: Apple's faith-based security taking a hammering Nick FitzGerald (Sep 13)
    - Re: Apple's faith-based security taking a hammering Joel Esler (Sep 14)
    - Re: Apple's faith-based security taking a hammering Valdis . Kletnieks (Sep 14)