Apple's Beats brand in April unveiled the Powerbeats Pro, a redesigned wire-free version of its popular fitness-oriented Powerbeats earbuds.
Celebrity iCloud Accounts Compromised by Weak Passwords, Not iCloud Breach
A breach of Apple's iCloud and Find My iPhone service was not involved in the recent hacking incident that saw the private photos and videos of several celebrities leaked onto the Internet, according to a press release just issued by Apple.
Instead, celebrity iCloud accounts were compromised by a targeted attack on user names, passwords, and security questions.
We wanted to provide an update to our investigation into the theft of photos of certain celebrities. When we learned of the theft, we were outraged and immediately mobilized Apple's engineers to discover the source. Our customers' privacy and security are of utmost importance to us. After more than 40 hours of investigation, we have discovered that certain celebrity accounts were compromised by a very targeted attack on user names, passwords and security questions, a practice that has become all too common on the Internet. None of the cases we have investigated has resulted from any breach in any of Apple's systems including iCloud(R) or Find my iPhone. We are continuing to work with law enforcement to help identify the criminals involved.Over the weekend, hundreds of nude photos of celebrities were leaked on 4chan before spreading to multiple Internet sites, with one of the involved hackers pointing towards iCloud as the source of the material, which quickly led to accusations of a flaw in iCloud as the reason for the leak.
Apple announced plans to launch an investigation into the matter on Monday, after a tool surfaced on Github that could have potentially allowed hackers to brute force their way into accounts via a security flaw in Find My iPhone. Though this tool allowed for multiple attempts to enter a password without being locked out of an account, it appears that it was not a factor in the recent hacking of celebrity accounts due to Apple's statement that Find My iPhone was not involved.
Apple suggests that all iCloud/Apple ID users should have a strong password and enable two-step verification to avoid similar hacking attempts.
[ 765 comments ]
Top Rated Comments
(View all)
61 months ago
All looks and no brains...
Clearly only women use weak passwords :rolleyes:
How about we stop victim-shaming people, celebrity or not?
61 months ago
What!? My password oscar4me wasn't good enough?
/I know a lot of very intelligent people who use simple passwords and I'm not blaming the victims but we need a strong campaign educating people about what are and are not good passwords. Apple's work with suggested passwords is a great start (if only people will use it).
/I know a lot of very intelligent people who use simple passwords and I'm not blaming the victims but we need a strong campaign educating people about what are and are not good passwords. Apple's work with suggested passwords is a great start (if only people will use it).
61 months ago
Now all the fun is spoiled. So many media outlets get attention by Apple-bashing without waiting for the facts.
I wonder how many of them will post retractions as prominent as their accusations?
I wonder how many of them will post retractions as prominent as their accusations?
61 months ago
The key phrase here for me is "and security questions". Most of those questions are biographical, and most celebrity biographies are well known.
I've always thought it was silly to say that the name of my high school was a security question-- there is nothing secure about that information.
I've always thought it was silly to say that the name of my high school was a security question-- there is nothing secure about that information.
61 months ago
Serves them right having such a weak password.
I bet "password" or "abc123" were used.
What do you expect "celebrities"? I knew iCloud was stronger than that.
So you're going to blame the victim?
61 months ago
Serves them right having such a weak password.
61 months ago
So you're going to blame the victim?
You bet I am. We are all the same. What makes them special? Nothing. If they used weak passwords, that's their fault.
61 months ago
if it was a breach (brute force), would apple actually admit it?
wouldn't a third party have to prove it was a breach for apple to admit it?
the same would hold true for any company, not just apple
why would any company take the heat if they didn't have to?
wouldn't a third party have to prove it was a breach for apple to admit it?
the same would hold true for any company, not just apple
why would any company take the heat if they didn't have to?
[ Read All Comments ]
Amazon is discounting the 2019 AirPods with Charging Case to $139.99, down from $159.00. Apple just refreshed the AirPods last month with an updated H1 chip and "Hey Siri" support,...
As part of its ongoing effort to rebuild Apple Maps, Apple has added detailed terrain features to the U.S. states of Arizona and New Mexico as well as the southern portion of Nevada, including the...
Tik Tok, which was pulled from the App Store in India last week to comply with a government demand to block downloads over child safety concerns, is allowed to return to the App Store, reports...
Amazon is currently discounting the latest 13-inch MacBook Pro with Touch Bar to a new all-time-low price. Specifically, this is the 2.3 GHz Quad-Core Intel Core i5 model with 8GB RAM and a 512GB...
Over four years after debuting on Android, and following a significant redesign last year, Google Fit is now available on iOS.
The fitness tracking app can track workout sessions completed...
Following a flash sale on Easter, Best Buy has returned this week with a new 4-day sale that offers discounts on the MacBook Pro with Touch Bar, iPhone X, Beats products, iPhone cases, and more. The...
iPhone XR remained the best-selling iPhone model in the United States in the first quarter of 2019, as it was in the fourth quarter of 2018, according to a survey conducted by research firm CIRP and...
Apple today seeded the third beta of an upcoming tvOS 12.3 update to its public beta testing group, one day after providing the beta to developers and two weeks after seeding the second public beta....
