Apple Posts Instructions on How to Verify a Secure Connection to iCloud.com

Apple Posts Instructions on How to Verify a Secure Connection to iCloud.com

Posted by · 11862 views · Translate
Following reports that Chinese authorities are using a 'man-in-the-middle attack' to gather usernames and passwords from iCloud users, Apple has posted a support document with instructions on verifying a secure connection to the iCloud website.

Apple is deeply committed to protecting our customers’ privacy and security. We’re aware of intermittent organized network attacks using insecure certificates to obtain user information, and we take this very seriously. These attacks don't compromise iCloud servers, and they don't impact iCloud sign in on iOS devices or Macs running OS X Yosemite using the Safari browser.

The iCloud website is protected with a digital certificate. If users get an invalid certificate warning in their browser while visiting www.icloud.com, they should pay attention to the warning and not proceed. Users should never enter their Apple ID or password into a website that presents a certificate warning.

To verify you are connected to the authentic iCloud website, check the contents of the digital certificate. Apple has provided instructions for Safari, Chrome, and Firefox.

Here's what to do if you're using Safari:

● When you're connected to the authentic iCloud website in Safari, you'll see a green lock icon in the toolbar next to Apple Inc. Choose the lock icon to see a message that says "Safari is using an encrypted connection to www.icloud.com." This indicates that the connection is secure and you can sign in normally.
Apple Posts Instructions on How to Verify a Secure Connection to iCloud.com

● If you're connecting to a website that isn’t secure, you’ll see a message that says “Safari can’t verify the identity of the website.” If you see this message, don't proceed or attempt to sign in.
Apple Posts Instructions on How to Verify a Secure Connection to iCloud.com

Hit the link below to read the instructions for other browsers...

Read More
dave vangina - October 22, 2014 at 8:46am
Total BS, hackers can throw in fake certificates in such way that you will see green padlock, correct message and you will sign in, sending credentials to hacker.
Recent