Subscribe / Unsubscribe Enewsletters | Login | Register

Pencil Banner

A Trojan horse to phish iCloud passwords lurks in an iOS Mail bug

Glenn Fleishman | June 15, 2015
When we get complacent, we get bad about security. The more we're prompted by something irritating that can be dismissed only by entering a password again, the more likely we are to not pay attention to what's asking. I speak, of course, of Apple's seemingly random and sometimes frequent iCloud login popup messages in iOS.

By showing us the same thing unnecessarily often, Apple trains us to respond by rote. Reducing security prompts by consolidating the need for them — like taking one blood draw from a patient for a dozen tests instead of a dozen jabs — improves user attentiveness.

This flaw should be easily repaired. I hope Apple will slip it into iOS 8 before it dead-ends that version. But it should also rethink how it legitimately gathers approval from us. Phishing only works when it resembles something we can't bother to pay attention to.

 

Previous Page  1  2  3 

Sign up for CIO Asia eNewsletters.