updated 10:45 am EDT, Thu October 21, 2010
Gaining, changing access may be too easy
The FaceTime for Mac beta -- released just yesterday -- has a pair of serious security vulnerabilities, reports suggest. If a computer is already logged into FaceTime, account settings in the app will notably display all of a person's associated data, including their birth date, security question and matching answer. This makes it trivial to hijack an account if an attacker already has access to a person's Mac.
Observers also point out that if someone logs out of FaceTime, their password remains entered in the password field, even after restarting the software. As a result, it becomes possible to quickly leap into another person's account. Because the Mac FaceTime client is still in beta though, Apple may already be working on fixing obvious security problems.