Chinese Authorities Allegedly Harvesting iCloud Logins Using Redirected Dummy Site - MacRumors
Skip to Content

Chinese Authorities Allegedly Harvesting iCloud Logins Using Redirected Dummy Site

by

Chinese authorities allegedly are using a man-in-the-middle attack to harvest Apple ID information from Chinese users visiting Apple's iCloud service, reports web censorship blog Great Fire (via The Verge). A similar attack reportedly targets Microsoft's login.live.com website.

icloudbeta
According to Great Fire, Chinese users trying to access iCloud.com are redirected to a fake site that resembles Apple's iCloud website. While some browsers will issue a warning, popular Chinese browser Qihoo gives no indication users are entering their Apple credentials into a dummy site. Users fooled by the site may be putting their personal information at risk as attackers can then use these login details to access contacts, messages and more stored in iCloud.

This is clearly a malicious attack on Apple in an effort to gain access to usernames and passwords and consequently all data stored on iCloud such as iMessages, photos, contacts, etc. Unlike the recent attack on Google, this attack is nationwide and coincides with the launch today in China of the newest iPhone. While the attacks on Google and Yahoo enabled the authorities to snoop on what information Chinese were accessing on those two platforms, the Apple attack is different. If users ignored the security warning and clicked through to the Apple site and entered their username and password, this information has now been compromised by the Chinese authorities.

This attack follows the Chinese launch of the new iPhone 6 and 6 Plus and may be related to the encryption options and increased security of Apple's iOS 8. It is possible Chinese authorities are using this hack to penalize Apple for taking extra measures that would prevent the government from snooping on phones.

Great Fire advises Chinese users to switch to a trusted browser such as Firefox and Chrome, which will warn users when they access an illegitimate site. Apple owners also can use a VPN to bypass this redirection and connect directly to iCloud.com. Two-factor authentication may also prevent attackers from accessing an iCloud account using a compromised username and password.

Note: Due to the political nature of the discussion regarding this topic, the discussion thread is located in our Politics, Religion, Social Issues forum. All forum members and site visitors are welcome to read and follow the thread, but posting is limited to forum members with at least 100 posts.

Tag: iCloud
Related Forum: Apple Music, Apple Pay/Card, iCloud, Fitness+

Top Rated Comments

whooleytoo Avatar
whooleytoo
152 months ago
Even the NSA wouldn't do this. Would they?

Too lazy. They just go straight to Apple and ask them to hand the data over.
Score: 21 Votes (Like | Disagree)
JoEw Avatar
JoEw
152 months ago
Trying to stop the revolution that surely is coming.
Score: 17 Votes (Like | Disagree)
nerdAFK Avatar
nerdAFK
152 months ago
DIE Communist Party DIE DIE DIE!
Score: 15 Votes (Like | Disagree)
B
brendu
152 months ago
But Tim Cook just gave these governments a big middle finger - "even we're required to provide the data we cannot decrypt it"...

(if Tim is not lying)

He claims they (Apple) can't decrypt it. To the best of his knowledge this is likely true. I still wouldn't bet against the possibility that the NSA has full access to Apple's (and everyone else's) servers and no one at Apple even knows about it.
Score: 12 Votes (Like | Disagree)
dannyyankou Avatar
dannyyankou
152 months ago
Wow! Doubling down? Looking fwd to Tim's response!

This is a classic example of phishing, so it's not Apple's fault. They should use a better browser next time.
Score: 8 Votes (Like | Disagree)
haruhiko Avatar
haruhiko
152 months ago
Too lazy. They just go straight to Apple and ask them to hand the data over.

But Tim Cook just gave these governments a big middle finger - "even we're required to provide the data we cannot decrypt it"...

(if Tim is not lying)
Score: 7 Votes (Like | Disagree)
Read All Comments

Popular Stories

iCloud General Feature Redux

iCloud+ Subscribers Get Higher Apple Intelligence Usage Limits in iOS 27

Tuesday June 9, 2026 6:05 am PDT by
Certain Apple Intelligence features in iOS 27 will carry daily usage limits, with iCloud+ subscribers receiving higher allowances than free users. The company reiterated the details in its press release accompanying yesterday's Apple Intelligence announcements. Apple said the limits apply to features that rely on "powerful server models," with image generation cited as the primary example....
Read Full Article66 comments
iCloud General Feature Redux

Apple's New Hide My Email Domain Makes It Easier to Block iCloud Aliases

Wednesday June 17, 2026 7:41 am PDT by
Apple's decision to move Hide My Email to a dedicated "private.icloud.com" domain appears to have the consequence of making it easier for platforms that want to block iCloud aliases to do so. Apple is unifying the email domains used by Sign in with Apple and iCloud+ Hide My Email under a single private.icloud.com domain later this summer. Sign in with Apple currently uses...
Read Full Article82 comments
Chase Sapphire Reserve Apple Perk Feature

Chase Sapphire Preferred Card Introduces New Perk for Apple Customers

Monday June 15, 2026 12:07 pm PDT by
Chase this week announced new perks for its Sapphire Preferred credit card, and one of them is a complimentary one-year Apple TV streaming subscription. To get the free year of Apple TV, which typically costs $12.99 per month in the U.S., you must activate the card by December 31, 2026. If you are already subscribed to Apple TV directly through Apple, the complimentary subscription from...
Read Full Article40 comments