MacRumors:
Scary, but unsurprising, really.
It's things like this that make me leery of using face recognition or fingerprint scanning to unlock things. What if I don't shave? What if I cut my finger?
It also reminds me of how pissed off I get about having to change passwords every 60 days. :-/
Be careful...
Cheers,
Scott.
The system requires a user to have a second "trusted" device that is used to verify a user's identity in addition to an extra security code called the "Recovery Key". However, in a new account from The Next Web's Owen Williams, that Recovery Key also has the potential to completely lock a person out of their account if they're being hacked.
Williams found that someone had tried to hack his iCloud account. Apple's two-factor system kicked in and locked the account, denying entry to the would-be hacker while also denying entry to Williams. When he went to iForgot, Apple's account recovery service, he assumed two of his password, Recovery Key or trusted device would unlock his account, as he was led to believe by an Apple Support document.When I headed to the account recovery service, dubbed iForgot, I discovered that there was no way back in without my recovery key. That’s when it hit me; I had no idea where my recovery key was or if I’d ever even put the piece of paper in a safe place. I’ve moved since I set up two-factor on iCloud.
Williams contends he took a screenshot of the Recovery Key and printed that out as well as taking a photo on his iPhone to keep as a backup, but could not locate either and was on the verge of losing his "digital life". He called Apple customer support and was told that he had forfeited his Apple ID by losing his Recovery Key and that there was no way Apple could help him. He called back a second time.
Scary, but unsurprising, really.
It's things like this that make me leery of using face recognition or fingerprint scanning to unlock things. What if I don't shave? What if I cut my finger?
It also reminds me of how pissed off I get about having to change passwords every 60 days. :-/
Be careful...
Cheers,
Scott.