Following last weekend's celebrity photo data theft, Apple's CEO, Tim Cook has
spoken out about what can be done to better increase the security and protect
the privacy of their customers. The steps include sending notifications for
account changes, backup restores, and new device logins; broadening the
deployment of two-step verification; and to ramp up efforts to educate
customers about the dangers of social engineering and phishing attacks, and
the importance of strong passwords. The latter of those steps was emphasized
when Cook reaffirmed that iCloud servers hadn't been hacked, the individual
accounts were hacked. The Wall Street Journal:
> When I step back from this terrible scenario that happened and say what more
could we have done, I think about the awareness piece. I think we have a
responsibility to ratchet that up. That's not really an engineering thing.
> We want to do everything we can do to protect our customers, because we are
as outraged if not more so than they are.
While alerts don't help prevent attacks, they do help mitigate them. Customers
receiving account notifications will be able to change passwords and even
alert Apple's security team. That service should start ...