As the Apple Turns    About    Reruns    Contact    Preferences Fri 8:39 AM

With Apple, Fraud's Easy Too (5/6/03)
SceneLink
 

Longtime viewers of this trashy little soap are well aware that we're perfectly happy to wander off-topic to engage in a little gleeful and petty gloating about the security flaw du jour afflicting all those poor saps running software slapped together by Microsoft. (Heck, it's one of the few hobbies we have left that isn't fattening, cancer-causing, or guaranteed to send us to hell.) Well, this time we've got something a little more relevant on deck: Apple's latest security hole. Da da da da dummmmmmm!

(That last bit there was an ominous chord, for those of you missed it.)

Yes, folks, faithful viewer Jonboy pointed us toward a WIRED article which describes an exploit that could have been used to compromise your Apple ID-- you know, that thing that lets you post soon-to-be-deleted obscenity-ridden rants to Apple's support forums, download developer tools from the Apple Developer Connection, and, most importantly in this context, make One-Click purchases from the Apple Store and the iTunes Music Store. Apparently somebody discovered that a little judicious cutting and pasting of data hidden in the HTML source of Apple's "Forgot Your Password?" page allowed him to reset the password of any Apple ID without needing to know anything except the victim's email address. Oops.

Now, before you go running off looking for details on how to pull this little stunt so you can score an iPod or six on someone else's dime, there are two things you should know. First of all, bad karma, man-- that's stealing, plain and simple, and you should be ashamed of yourselves for even considering such a thing. Secondly, Apple already fixed the bug. Don't ask us how we know. (Quit looking at us like that.)

Since an Apple ID account contains a user's credit card data, at first this exploit sounds pretty nasty, but it's not as bad as it could have been; while nefarious and new-iPod-less ne'er-do-wells could indeed have ordered up some gear using the stored credit card info, they couldn't have accessed the actual credit card data itself, and thus the damage would have been limited to Apple's stores. Since it's Apple's bug that would have led to the charges in the first place, we can't believe the company would try to hold the Apple ID holder liable-- and, of course, there's all sorts of legal protection for credit card users in the case of fraud. On top of that, Apple claims that no one ever exploited this bug in the first place. No harm, no foul.

Once we thought about it a bit longer, though, we came to the conclusion that this exploit was at least as heinous as all those Microsoft holes that are constantly letting through malicious viruses. Trashing our hard drives is something from which we could probably recover, but finding out that someone used our credit cards to buy eighty bucks' worth of Céline Dion and Faith Hill songs, well... there are some dark places in the corners of the soul from which a man may never return.

 
SceneLink (3933)
And Now For A Word From Our Sponsors
 

As an Amazon Associate, AtAT earns from qualifying purchases

 

The above scene was taken from the 5/6/03 episode:

May 6, 2003: Apple's stock jumps on the news that the iTunes Music Store sold a million songs in its first week. Meanwhile, alleged benchmarks surface for the new alleged PowerPC 970-based Macs allegedly slated for an alleged June or July unveiling, and Apple fixes a bug that allowed nasty people to take control of others' Apple IDs and buy all the gear they wanted...

Other scenes from that episode:

  • 3931: Lotsa Tunes, Lotsa Pods (5/6/03)   Apple's music news just keeps on getting better; now they've issued a press release reporting that the iTunes Music Store has officially sold over one million songs in its first week. Furthermore, "over half" of the tracks in the iTMS's entire 200,000-song catalog were downloaded at least once, and more than 50% of the songs sold were purchased as full albums...

  • 3932: 110% Undeniably Real & True (5/6/03)   So here's the thing; we're so completely out of the loop after our extended absence that there's absolutely no way we can possibly judge any Apple-related rumors based on known fact. As it turns out, though, that's actually sort of a blessing, since it affords us a luxury we haven't been able to experience in years: blind faith...

Or view the entire episode as originally broadcast...
Vote Early, Vote Often!
Why did you tune in to this '90s relic of a soap opera?
Nostalgia is the next best thing to feeling alive
My name is Rip Van Winkle and I just woke up; what did I miss?
I'm trying to pretend the last 20 years never happened
I mean, if it worked for Friends, why not?
I came here looking for a receptacle in which to place the cremated remains of my deceased Java applets (think about it)

(1287 votes)

Like K-pop, but only know the popular stuff? Expand your horizons! Prim M recommends underrated K-pop tunes based on YOUR taste!

Prim M's Playlist

DISCLAIMER: AtAT was not a news site any more than Inside Edition was a "real" news show. We made Dawson's Creek look like 60 Minutes. We engaged in rampant guesswork, wild speculation, and pure fabrication for the entertainment of our viewers. Sure, everything here was "inspired by actual events," but so was Amityville II: The Possession. So lighten up.

Site best viewed with a sense of humor. AtAT is not responsible for lost or stolen articles. Keep hands inside car at all times. The drinking of beverages while watching AtAT is strongly discouraged; AtAT is not responsible for damage, discomfort, or staining caused by spit-takes or "nosers."

Everything you see here that isn't attributed to other parties is copyright ©,1997-2024 J. Miller and may not be reproduced or rebroadcast without his explicit consent (or possibly the express written consent of Major League Baseball, but we doubt it).