Following Apple's unexpected maintenance, users are reporting unauthorized password resets

Apple recently put up a page on their developer portal that said they were performing unexpected maintenance and because of this, any account that was going to expire during this time window was extended a week. Seeing that the maintenance was unexpected, it first seemed like they were having some backend issues but the longer the down-time has gone on, some have been wondering if Apple’s systems may have been compromised.

To build on this theory, we should note that this is not confirmed and we are simply looking at social indicators, there are tons of users reporting that they have received a notice that an attempt was made to reset their user ID’s password.  

Sure, this could be a coincidence that the dev portal is down for unexpected maintenance but when you see that many users are now reporting attempts to access their accounts, it does appear, on the surface at least, that someone may have gotten hold of a large batch of Apple IDs.

It is possible that during the downtime too that the reset notification process was affected and that this triggered all of the emails that have been sent out to users. But, without Apple having issued any kind of statement about why there is an abundance of email reset attempts being made, it’s best to side with caution and proactively update your account’s security information and settings.

Now would be a good time to update your Apple ID password and authentication tools as a precautionary measure and until we see if Apple comes forward about a potential breach.

Source: Twitter

Report a problem with article
Previous Story

Google's datacenter spending spree continues: $1.6B in Q2

Next Story

Slow News Saturday: Google flubs on basic math problem

11 Comments

Commenting is disabled on this article.

got this email

Apple Developer Website Update

Last Thursday, an intruder attempted to secure personal information of our registered developers from our developer website. Sensitive personal information was encrypted and cannot be accessed, however, we have not been able to rule out the possibility that some developers' names, mailing addresses, and/or email addresses may have been accessed. In the spirit of transparency, we want to inform you of the issue. We took the site down immediately on Thursday and have been working around the clock since then.
In order to prevent a security threat like this from happening again, we're completely overhauling our developer systems, updating our server software, and rebuilding our entire database. We apologize for the significant inconvenience that our downtime has caused you and we expect to have the developer website up again soon.

I can't sign into itunes on my pc either...

Getting an error "ConnectionManager::invoke::Failed to find service connection url."