Submission + - Apple gives out user's ID without verification (nyud.net)
Max Romantschuk writes: "Marko Karppinen just had his Apple ID password stolen (Coral Cache link), by someone who sent a ridiculously poorly crafted social engineering attack to Apple saying:
am forget my password of mac,did you give me password on new email marko.[redacted]@yahoo.com
While Marko was able to regain control of his account using his security question, all information stored in his account has now been compromised. Apple seems to be doing OK financially these days, so can't they afford even basic training to their support staff? Apple has yet to respond."