Celebrity iCloud Accounts Compromised by Weak Passwords, Not iCloud Breach

icloud_icon_blueA breach of Apple's iCloud and Find My iPhone service was not involved in the recent hacking incident that saw the private photos and videos of several celebrities leaked onto the Internet, according to a press release just issued by Apple.

Instead, celebrity iCloud accounts were compromised by a targeted attack on user names, passwords, and security questions.

We wanted to provide an update to our investigation into the theft of photos of certain celebrities. When we learned of the theft, we were outraged and immediately mobilized Apple's engineers to discover the source. Our customers' privacy and security are of utmost importance to us. After more than 40 hours of investigation, we have discovered that certain celebrity accounts were compromised by a very targeted attack on user names, passwords and security questions, a practice that has become all too common on the Internet. None of the cases we have investigated has resulted from any breach in any of Apple's systems including iCloud(R) or Find my iPhone. We are continuing to work with law enforcement to help identify the criminals involved.

Over the weekend, hundreds of nude photos of celebrities were leaked on 4chan before spreading to multiple Internet sites, with one of the involved hackers pointing towards iCloud as the source of the material, which quickly led to accusations of a flaw in iCloud as the reason for the leak.

Apple announced plans to launch an investigation into the matter on Monday, after a tool surfaced on Github that could have potentially allowed hackers to brute force their way into accounts via a security flaw in Find My iPhone. Though this tool allowed for multiple attempts to enter a password without being locked out of an account, it appears that it was not a factor in the recent hacking of celebrity accounts due to Apple's statement that Find My iPhone was not involved.

Apple suggests that all iCloud/Apple ID users should have a strong password and enable two-step verification to avoid similar hacking attempts.

Popular Stories

space black mbp

Apple Potentially Facing Worst Leak Since iPhone 4 Was Left in a Bar

Monday October 7, 2024 3:03 pm PDT by
Alleged photos and videos of an unannounced 14-inch MacBook Pro with an M4 chip continue to surface on social media, in what could be the worst product leak for Apple since an employee accidentally left an iPhone 4 prototype at a bar in California in 2010. The latest video of what could be a next-generation MacBook Pro was shared on YouTube Shorts today by Russian channel Romancev768, just...
iPhone 17 Slim Feature Single Camera 2

10 Reasons to Wait for Next Year's iPhone 17

Tuesday October 8, 2024 5:45 am PDT by
Apple's iPhone development roadmap runs several years into the future and the company is continually working with suppliers on several successive iPhone models simultaneously, which is why we sometimes get rumored feature leaks so far ahead of launch. The iPhone 17 series is no different – already we have some idea of what to expect from Apple's 2025 smartphone lineup. If you plan to skip...
iPad mini review thumb

iPad Mini 7 Coming Next Month: What to Expect

Tuesday October 8, 2024 6:16 am PDT by
Rumors strongly suggest Apple will release the seventh-generation iPad mini in November, nearly three years after the last refresh. Here's a roundup of what we're expecting from the next version of Apple's small form factor tablet, based on the latest rumors and reports. Design and Display The new iPad mini is likely to retain its compact 8.3-inch display and overall design introduced with...
apple tv 4k yellow bg feature

Waiting for a New Apple TV? Here's What the Latest Rumors Say

Tuesday October 8, 2024 8:57 am PDT by
The current Apple TV was released two years ago this month, so you may be wondering when the next model will be released. Below, we recap rumors about a next-generation Apple TV. In January 2023, Bloomberg's Mark Gurman reported that a new Apple TV was planned for release in the first half of 2024:Beyond the future smart displays and new speaker, Apple is working on revamping its TV box....
Generic iOS 18

Everything New in iOS 18.1 Beta 6

Monday October 7, 2024 4:27 pm PDT by
We're nearing the end of the iOS 18.1 beta testing process, but Apple is continuing to make tweaks to refine built-in features ahead of when the software launches. With testing winding down, there are fewer new additions, but Apple has made changes worth noting. The new beta is available for both developers and public beta testers. Control Center In the Control Center, Apple has added new...
Prime Big Deal Days Hero 3

The Best Prime Day Deals on AirPods, Apple Watch, and More

Tuesday October 8, 2024 5:19 am PDT by
Amazon's Prime Big Deal Days event is in full swing today, offering customers the first chance to get some holiday shopping done early. Similar to the first Prime Day, it will last for two days (October 8-9) and you can find a large selection of deals across Amazon's storefront, covering savings on tech, clothing, video games, groceries, and much, much more. Note: MacRumors is an affiliate...
m4 macbook pro leak russian ad

Leaked M4 MacBook Pro Appears for Sale on Russian Classifieds Site

Wednesday October 9, 2024 2:05 am PDT by
In a continuation of the latest unprecedented leak, Apple's yet-to-be-announced M4 MacBook Pro has reportedly surfaced on Avito, a popular Russian classified ads website. The development follows recent videos from Russian YouTube channels showcasing what appears to be the unreleased laptop model. According to reports on social media, the listing on Avito advertised a 14-inch MacBook Pro...

Top Rated Comments

gibbz Avatar
132 months ago
All looks and no brains...

Clearly only women use weak passwords :rolleyes:

How about we stop victim-shaming people, celebrity or not?
Score: 53 Votes (Like | Disagree)
taptic Avatar
132 months ago
All looks and no brains...
Score: 45 Votes (Like | Disagree)
neuropsychguy Avatar
132 months ago
What!? My password oscar4me wasn't good enough?

/I know a lot of very intelligent people who use simple passwords and I'm not blaming the victims but we need a strong campaign educating people about what are and are not good passwords. Apple's work with suggested passwords is a great start (if only people will use it).
Score: 36 Votes (Like | Disagree)
Mark-Technology Avatar
132 months ago
Still doesn't matter; saw boobs.
Score: 29 Votes (Like | Disagree)
Doctor Q Avatar
132 months ago
Now all the fun is spoiled. So many media outlets get attention by Apple-bashing without waiting for the facts.

I wonder how many of them will post retractions as prominent as their accusations?
Score: 24 Votes (Like | Disagree)
Analog Kid Avatar
132 months ago
The key phrase here for me is "and security questions". Most of those questions are biographical, and most celebrity biographies are well known.

I've always thought it was silly to say that the name of my high school was a security question-- there is nothing secure about that information.
Score: 22 Votes (Like | Disagree)