Comment Re:Lots of assumptions going on here... (Score 1) 64
If you read the available information about this, there seems to be many procedures in place to avoid social engineering.
Except those same procedures have been worked around in past social engineering attacks. Unless Apple's CSRs are magically immune to social engineering then there's no reason to expect that anyone determined enough won't get around them.
lso, there is nothing here about anyone having access to any ones files or data (encrypted or otherwise). Just procedures which would allow one access to there own account, this would be akin to an automated password reset.
Having access to someone's account means one can download an decrypt iCloud device backups.