Apple Responds to Hack Threats, Says There Were No iCloud or Apple ID Breaches

by

In response to a ransom threat in which hackers are claiming to have access to more than 600 million iCloud accounts, Apple told Fortune there have been no breaches of its systems.

Instead, if the hackers do have access to iCloud accounts, Apple suggests previously compromised third-party services are at fault. From an Apple spokesperson:

There have not been any breaches in any of Apple's systems including iCloud and Apple ID," the spokesperson said. "The alleged list of email addresses and passwords appears to have been obtained from previously compromised third-party services.

Apple's response follows a report from Motherboard that suggests a group of hackers known as the "Turkish Crime Family" have claimed to have access to hundreds of millions of iCloud accounts.

Apple two factor authentication
The Turkish Crime Family has threatened to reset the iCloud accounts and remotely wipe victims' Apple devices if Apple does not pay $150,000 in Bitcoin or Ethereum by April 7. If Apple does not pay in three days, the group plans to increase the amount of money it is asking for.

Originally the group was believed to have access to 300 million icloud.com, me.com, and mac.com email addresses, but that number later jumped to 627 million due to additional hackers allegedly stepping forward to provide account credentials. The hackers say at least 220 million of the login credentials are verified to work and do not have two-factor authentication enabled.

With Apple denying a breach, the iCloud account information has likely been obtained from major hacking incidents that have affected companies like Yahoo. iCloud users who have the same username and password that was used for both a hacked site and for iCloud should change their passwords immediately.

The Apple spokesperson also told Fortune the company is "actively monitoring to prevent unauthorized access to user accounts and are working with law enforcement to identify the criminals involved," but did not outline what specific steps are being taken to monitor the situation beyond "standard procedure."

Apple recommends that all iCloud users choose strong passwords, use different passwords for different sites, and turn on two-factor authentication to protect their accounts.

Popular Stories

imac video apple feature

Apple Unveils First New Products of 2026

Monday January 26, 2026 1:55 pm PST by
Apple today introduced its first two physical products of 2026: a second-generation AirTag and the Black Unity Connection Braided Solo Loop for the Apple Watch. Read our coverage of each announcement to learn more:Apple Unveils New AirTag With Longer Range, Louder Speaker, and More Apple Introduces New Black Unity Apple Watch BandBoth the new AirTag and the Black Unity Connection Braided...
Read Full Article
Second Generation AirTag Feature

Apple Unveils New AirTag With Longer Range, Louder Speaker, and More

Monday January 26, 2026 6:07 am PST by
Apple today introduced the second-generation AirTag, with key features including longer range for tracking items and a louder speaker. For those who are not familiar, the AirTag is a small accessory that you can attach to your backpack, keys, or other items. Then, you can track the location of those items in the Find My app on the iPhone, iPad, Mac, Apple Watch, and iCloud.com. The new...
Read Full Article212 comments
iPhone 5s

iPhone 5s Gets New Software Update 13 Years After Launch

Monday January 26, 2026 3:56 pm PST by
Alongside iOS 26.2.1, Apple today released an updated version of iOS 12 for devices that are still running that operating system update, eight years after the software was first released. iOS 12.5.8 is available for the iPhone 5s and the iPhone 6, meaning Apple is continuing to support these devices for 13 and 12 years after launch, respectively. The iPhone 5s came out in September 2013,...
Read Full Article96 comments
M5 MacBook Pro

Apple Reportedly Aiming to Upgrade the MacBook Pro Twice This Year

Sunday January 25, 2026 11:46 am PST by
Apple plans to release new MacBook Pro, MacBook Air, Mac Studio, and Studio Display models in the first half of this year, according to Bloomberg's Mark Gurman. In his Power On newsletter today, Gurman added that redesigned MacBook Pro models with an OLED touch screen "should be hitting toward the end of 2026," meaning that the MacBook Pro line would be upgraded twice this year. First up...
Read Full Article168 comments
Apple Logo Spotlight

Apple to Launch These 20+ Products This Year

Sunday January 25, 2026 6:02 pm PST by
2026 promises to be yet another busy year for Apple, with the company rumored to be planning more than 20 product announcements over the coming months. Beyond the usual updates to iPhones, iPads, Macs, and Apple Watches, Apple is expected to release its all-new smart home hub, which was reportedly delayed until the more personalized version of Siri is ready. Other unique products rumored for ...
Read Full Article76 comments

Top Rated Comments

Kaibelf Avatar
Kaibelf
116 months ago
Typical Apple. Blame others first then admit to fault later, if ever.
Provide evidence before accusing
Score: 50 Votes (Like | Disagree)
ulyssesric Avatar
ulyssesric
116 months ago
Typical Apple. Blame others first then admit to fault later, if ever.
Typical hater. Blame Apple first for whatever they have or haven't done then disappear from the thread.
Score: 44 Votes (Like | Disagree)
Watabou Avatar
Watabou
116 months ago
Typical Apple. Blame others first then admit to fault later, if ever.
How are they blaming others? They're just saying people use the same user name and passwords. There was no actual scraping of user names and passwords from iCloud database is what Apple is saying. How the heck is that Apple's fault if people use the same username/passwords?
Score: 42 Votes (Like | Disagree)
Mansu944 Avatar
Mansu944
116 months ago
Typical Apple. Blame others first then admit to fault later, if ever.
But they said THEY have not been compromised.
Score: 27 Votes (Like | Disagree)
CarlJ Avatar
CarlJ
116 months ago
The people behind this kind of thing need to be set on fire, it's just evil behavior, whether or not they actually have the details they purport to have. I'm going to venture a guess that this, indeed, isn't a hack of Apple itself, and do simply have some password-reuse email/password combinations from other sites.

Time to turn on 2FA, if you haven't already, and never use the same password in more than one place - get a good password manager (I like 1Password) and use it to keep long random passwords that are separate for every site.
Score: 17 Votes (Like | Disagree)
wjw0111 Avatar
wjw0111
116 months ago
"There have not been any breaches in any of Apple's systems including iCloud and Apple ID," the spokesperson said. "The alleged list of email addresses and passwords appears to have been obtained from previously compromised third-party services."

Sounds to me like they're blaming others.
Well, it's not really "blame". It's just assuring that their systems have not been compromised.

There's not a lot they can do if someone creates an account with Apple, and an account with a third-party using the same username and password. The third-party gets hacked and then the username and password are exposed.

How exactly is Apple supposed to protect against that sort of attack? 2 factor authentication? Oh right... they already have that available...
Score: 10 Votes (Like | Disagree)
Read All Comments