Can an Apple ID still be hacked with two factor authentication ON??

Question

Level 1

9 points

Can an Apple ID still be hacked with two factor authentication ON??

Is it possible for someone that knows the Apple ID and maybe the password (not sure) to have access from another device (which is not registered as trusted) if the two factor authentication is turned on? Because a friend who is having this problem just received a couple of emails that the password was changed, and 5 minutes later the alert of the two factor authentication code (the allow access or not alert) was sent to his phone.. but this was AFTER he received the emails stating that the password was changed... is it possible that someone did have access to his account?

Posted on Apr 5, 2018 12:20 AM

Reply

Answer 1

LACAllen

Level 8

43,590 points

Apr 5, 2018 3:43 AM in response to anelcons

Did this person also have a trusted phone number that is not his trusted device?

I would expect their trusted device would have seen the login attempt and request for a code. If they had a trusted phone number as well, a remote request to send a code to this other number via SMS/voice call could have been made which could allow access on another device.

Get a verification code and sign in with two-factor authentication - Apple Support

But they would have seen such a request first on their trusted device, assuming they had access to it at that time.

Reply

Answer 2

LACAllen

Level 8

43,590 points

Apr 5, 2018 9:50 AM in response to anelcons

Based on what you are saying here it sounds like the account has been accessed.

But without a trusted number different from the trusted device something does not make sense.

Reply

Answer 3

deggie

Level 10

167,525 points

Apr 5, 2018 11:41 AM in response to anelcons

I don't think it demonstrates that at all. Have the person call AppleCare and ask to be transferred to the account security team.

Reply

Answer 4

anelcons Author

Level 1

9 points

Apr 5, 2018 7:30 AM in response to ProustGiulio

He did receive the Alert that someone was trying to use his Apple ID but only after 5 minutes of receiving the “password change” email, and also he received an email that said “iPhone “find my phone” has been deactivated from your iPhone” after the first email... do you think the account was accessed?

Reply

Answer 5

anelcons Author

Level 1

9 points

Apr 5, 2018 11:25 AM in response to LACAllen

It doesn’t make sense but that only demonstrates that Apple’s two factor security doesn’t work at all.. if they did have access to his account a lot of information that was private just got accessed by someone that shouldn’t have.

Reply