Be careful with your Apple credit card...

[Highmac]

It's not just the pickpockets and scammers. The problem is with leather wallets and jeans pockets,  https://www.bbc.co.uk/news/technology-49435687] according to this BBC report.

Apple has previously been criticised for making products that are aesthetically pleasing but easily damaged in everyday use.
"When not in use, Apple Card should be returned to a uniformly lit white cube," joked Alex Stamos, Facebook's former chief security officer.

.

[Xairbusdriver]

Just heard a report on the radio (maybe you remember that device that plays music and speech without having an interweb connection). But the linked report is a bit confusing; why does it quote a former Facebook employee and what in the world is "a uniformly lit white cube"? I am assuming the size of the cube will be as tall, wide and long as the length of the card. But should the cube be made of translucent material or clear?! Is plastic approved or should it be glass?

Perhaps I'll simply stick with my single Visa card which doesn't seem to be so "pretty" that it needs any protection at all.

MacRumor report.

[kimmer]

I haven't paid much attention the Apple Card, so I wasn't aware it some kind of fancy credit card. One thing that bothers me is this comment from an article I found through Jim's link:

Two-factor authentication must be turned on

I thought I understood that this was a bad thing to do, and something about if you lose a "key", you're sunk? Am I remembering wrong?

[Xairbusdriver]

something about if you lose a "key", you're sunk? Am I remembering wrong?

At my age, I'm lucky to just remember something, knowing whether the memory is correct or not is beside the point!

What you may be remembering is the older Apple method that created a code when you turned on 'two-step verification'. You were supposed to save (write down?) that code and remember where it was! If you then ever forgot your Apple ID password, you could use the code and have access to one of your trusted devices, to create a new password. This wasn't really a 'two factor' method, just a two-step process. Here's a fairly detailed (if slightly dated) explanation as well as how the new two factor method works.

Obviously, if you use almost any password manager, the old method would still be easy to use since you would have saved/stored that original code (which you would never, hopefully, ever use) in that app. If you were not using a password manager, you probably were over-confident about your memory skills... so how come you forgot your Apple password, which you probably used at least weekly?!!

What bothers many about two-factor schemes is that so many of them offer false security. Hackers are constantly finding ways to find holes. The holes aren't usually in the details of the two factors but in how the authorizations are transferred between them. One of the more widely used 2FA schemes uses SMS for one side of the process; SMS has been proven to be quite susceptible to hacked!

The less security related problem many of us have with 2FA is that it is often cumbersome, tedious, time-wasting and not user-friendly. I'm still angry that "Apple ID" is simply an email address! Why use "Apple ID" when 9097% of the world just uses the term "user name". At least the allow the Apple ID Password to be called simply a password! It all comes down to Apple's obsession of adding their brand name to everything...

[Highmac]

Good morning


I took the cube reference to be about some of Apple's shop designs or the G4 cube but any other speculative responses would be welcome. The funnier the better, eh? We need all the humour we can get over here 


   I don't know why the link would not format properly - I typed in  the 'url=' and the [/ url] but each time I previewed they had disappeared. In the end, at 11pm and tired, decided to get the message out and worry about the rest in the morning (it's now 9.45am).

[kimmer]

What you may be remembering is the older Apple method that created a code when you turned on 'two-step verification'. You were supposed to save (write down?) that code and remember where it was! If you then ever forgot your Apple ID password, you could use the code and have access to one of your trusted devices, to create a new password. This wasn't really a 'two factor' method, just a two-step process. Here's a fairly detailed (if slightly dated) explanation as well as how the new two factor method works.

Thanks, Jim. Yes it was the "Recovery Key" that I was remembering as being an issue--because I'd lost mine!    Thus I long ago disabled the two-step verification while I was able to do so. Reading your slightly dated article, I now understand that two-step verification is totally different from two-factor authentication (2FA). Thanks for solving the mystery.

I don't mind 2FA. I must use it to log in to my banks online site. I have a credit card that also requires it when I log in to their web site. There are other sites that also require it. I'm used to it, I guess.

Now back to the whole Apple Credit Card subject ... having read several articles about this gem, I don't see the point. It's a credit card for pete's sake. But it's a handle with kid gloves CC.

Too. Much. Work.

The credit cards that I carry with me are stored in a nice little RFID Blocking case. Because the tops of the cards touch each other, I couldn't store this Apple card in that case. I mean why have it and damage it? Plus, because I'm in a fairly rural area, there isn't a store around that accepts Apple Pay, so what's the point? For me? None.

Lastly, I thought the "uniformly lit white cube" was funny. 

[Xairbusdriver]

OH! That Cube!! How quickly we I forget!

Looks like you have the url fixed. But there is still an extra "]" in there...

Concentrating on details like these can help take your mind off of other things "breaking"!

I don't mind 2FA.

The problem is we usually have no idea how secure the method being used might be. Without knowing that, we are simply hoping for the best. Many people often fall short of that criteria, corporations even more often...

[Xairbusdriver]

From TidBITS:

Perhaps your best option for storing the physical Apple Card is to put it in a nice frame on the wall and stick with Apple Pay. Or maybe Apple will introduce a $30 Apple Card case.

You might want to read up on the "Opt Out" capability before continuing to use the card more than 90 days.

[eric j]

Now in my 90th year, I try to avoid all kinds of credit and since the finance sector managed to get taxpayers to pay for its misdeeds in 2008 I don't trust any of them.
Now that Apple has become a mega corporation it has lost the emotional appeal I once felt for it. I'm accustomed to its OS and too lazy to learn a new one, so I stay with the Mac.
Apple's venture into finance - with Goldman Sachs - therefore fills me with despair and disillusionment. Don't tell me about profit and shareholder value, I worked in the commercial sphere for 50 years. Apple is no longer capable of, or interested in, product innovation.