Path: csiph.com!fu-berlin.de!uni-berlin.de!individual.net!not-for-mail From: Jolly Roger Newsgroups: comp.sys.mac.system,comp.mobile.ipad,misc.phone.mobile.iphone Subject: Re: Apple responds to hacker claims, says systems not breached Date: 24 Mar 2017 16:11:02 GMT Organization: People for the Ethical Treatment of Pirates Lines: 26 Message-ID: References: <2pSdnT7cKJZ4kk7FnZ2dnUU7-SHNnZ2d@giganews.com> <51W5y0sPNk52-pn2-I0eoBMTkDQx0@localhost> <58d42d67$0$54270$c3e8da3$12bcf670@news.astraweb.com> <58d53802$0$17444$c3e8da3$3a1a2348@news.astraweb.com> X-Trace: individual.net p5ei+/GymxnMUNgThY59aw4RNm/GpxHzVOtM1S8ano7RuqCrg5 Cancel-Lock: sha1:jsfsQtf7dHzSmKkbbYdaoLIW6fs= Mail-Copies-To: nobody User-Agent: slrn/1.0.1 (Darwin) Xref: csiph.com comp.sys.mac.system:102955 comp.mobile.ipad:60675 misc.phone.mobile.iphone:98928 On 2017-03-24, JF Mezei wrote: > On 2017-03-24 09:29, Lewis wrote: > >> That is also entirely wrong. If anyone logs in to my AppleID, I >> immediately get an alert showing the location of the login and am able >> to deny that login before they even get a confirmation that the password >> is right (or wrong). > > The email I received advising me that someone had used my Apple ID on a > new phone (iPhone 6 which I do not have) contained no information on > location of attempt. When you are using two-factor authentication, you see the location. > 2FA prevents person from using account, but does not prevent them from > trying to login (generating the need to authorize). So even if I had had > 2FA enabled, the password would still have been compromised by whatever > means the hackers used to obtain it in the first place. Nonsense. -- E-mail sent to this address may be devoured by my ravenous SPAM filter. I often ignore posts from Google. Use a real news client instead. JR