-------- Original Message -------- Subject: [cryptography] Preemptive compromise of Apple ID accounts Date: Sun, 23 Sep 2012 20:26:42 +1200 From: Peter Gutmann <pgut001@cs.auckland.ac.nz> To: cryptography@randombit.net I just got email from Apple asking me to confirm setting up a rescue email address for my Apple ID account (I haven't owned any Apple products since the IIe). It's the real thing from Apple, not a phishing email. So it looks like attackers have gone beyond social engineering access to Apple accounts and are pre-emptively creating mechanisms for access on the off chance that the target may at some point become an Apple account user who can then be exploited. That's pretty sophisticated forward planning. Peter. _______________________________________________ cryptography mailing list cryptography@randombit.net http://lists.randombit.net/mailman/listinfo/cryptography