Just tested it with my wife's account and set my email address as the recovery email and true as nuts when she clicks the 'Oops If these changes were made in error link' and does the necessary, I received the email with the link straight to the page with appleid and all:
Create a new password.
Enter a new password for firstname.lastname@example.org below.
Your password must be at least eight characters long. It must
blah blah blah ....
So now someone else will be changing my password and logging into my account and doing whatever they like and there is nothing I can do about it. No need to get scammers to get us to part with security info when apple can do it for you. Don't think they thought that on though to well.
What Apple also could have done to inform us is at least add it to the ITunes/AppStore terms and conditions, as an update or something, like they did when the purchasing period was extended to 15 minutes after logging in. But no, for some reason, they didn't feel like it was anything to be alarmed about. Hmm, speaking of unauthorized persons, I wonder if this sort of push notification can be replicated.
I did wonder if it was something malicious asking for more information from me. Asking me to sign in twice 'for security' seemed odd too - this even happened here on this discussion site. An explanatory email ahead of time may have helped. In regard to the questions, an option to choose / write your own question would be helpful. I struck too sets of questions that I couldn't answer myself! Favorite / least favorite teacher - no idea. I could perhaps pick one today, but I wouldn't remember which I picked if I were asked again in a few months time. Where did my parents meet - I suppose they've told me at some point, but I can't remember, and it's not important to me. I would've simply entered a standard one word answer - a password in effect for all three question, but the answers to each have to be different. I think there may be a lot of people that can't reliably answer their questions next time.. Not an effective security method in my opinion. Easily improved by letting people write their own questions however. - Some more freedom in this please Apple..
The most ridiculous security questions ever. The need to have definitive answers, not ones that can change each time you ask them, I've been forced to provide an answer to a question that I'm almost certain i won't recall if I'm ever asked by apple.
I don't have a 'least favourite' of any of those things on the second page. I don't know where my parents met. And I don't recall the name of the village we spent new years in 2000 at. So, I now have the option of not using the app store, providing flaky answers that I probably won't remember, or writing it all down, which defeats he entire purpose of these types of security questions.
Try harder Apple. You're locking people out of the store, or at the very least creating a swarm of future pain for users.
I was about to buy an album from iTunes and have decided not to because of these security questions. I refuse to give apple anymore personal info than required. I wouldn't be surprised that those that answered the security questions might start getting spam about their favorite car...
I'm sure it won't be from apple but if you have data about you on an online database somewhere it can always be hacked...
It's a bit sad because I love my 4S and it's effectively hobbled...
Unbelievable. Earth to Planet Cupertino, come in please. My 8 year old son uses my Apple devices. How will he know my favorite teacher and least favorite teacher? I don't even know my favorite and least favorite teacher after being out of school for a quarter century. My wife surely doesn't have the same favorite teacher and she wasn't the first person I kissed.
You have to answer 3 of 5 security questions:
What was the first car you owned?
Who was your first teacher?
What was the first album you owned?
Where was your first job?
In which city were you first kissed?
A business is not allowed to ask me for my Driver's License, but Apple expects this? They know my address, phone number, credit card number and name.
They sell and share this information as well. Why?
I called Apple and RECORDED the call. They record it for "quality assurance" and I recorded it in accordance with New Jersey State law for my judicial satisfaction. What's next, a urine sample?!? I asked "Carlos" from Apple what his first job was or what city he was first kissed in and he said he did not have to answer that because he did not have a service relationship with me.
WRONG CARLOS! I reminded him to look at my Apple dossier and pointed out that the iPhone3S, iPhone4S, iPad 1, iPad 2, iPad 3, 64GB iTouch, 21 inch iMac, Mac Airbook, 27 inch iMac and the several hundred apps ALL CONTRIBUTED TO A RELATIONSHIP and if my relationship stops he might be out of a paycheck.
It's too much information and under the Terms of Service Apple can share this with anyone they please.
This is way too intrusive.
Obviously you can answer whatever you like for these questions, but isn't the point of security questions that you use irrefutable facts as answers do you ALWAYS know the answer. If I make up answers, how am I supposed to remember them?
It's not about lying to Apple, it's about having three security questions with less than irrefutable facts that can change according to the way you feel that day, or you can forget because they're not real facts.
You said exactly what I wanted to say. I mean how narrow minded can u f**ing get. What makes them think that these questions apply to all people? And why not have the option to create your own question. I mean its just going to do a fricking string comparison on my answer not the fricking question. This got me literally angry because I knew I was not going to remember any of these aswers when the time comes.
I would love to put the persons face who decided this was a good idea into a big pile of donkey ****.
Sorry for my "French" just a lil fustrated.
When I saw it I immediately suspected a phishing scheme and cancelled ordering the app. Apple did nothing to inform customers of this change and that in itself was an incredible security risk. Further, I am old and some of these questions are about events that I did not find particularly memorable, like "first kiss." And do I really have to try to remember who my kindergarten teacher was? Or was it my pre-school teacher? Gee whiz. And who wants to type the answers to these questions on an iPad?
Look, if you can't pick a secure password then you surely aren't going to increase your security by telling people where you got your first kiss. This is nonsense and should be readily apparent as such to anyone who is not an Apple employee.
Well it appears that maybe Apple has folded on the issue. I just tried to download the audio of Bill Cosby's Denist standup again. I have been trying to buy it off and on since this mess started. The new security password and email request DID NOT appear as it had whenever I tried it earlier. I cannot say it is all over... But I got one of the things I have been after without giving Apple a new level of information (including yet another email) on myself.