Apple Responds to Hack Threats, Says There Were No iCloud or Apple ID Breaches

In response to a ransom threat in which hackers are claiming to have access to more than 600 million iCloud accounts, Apple told Fortune there have been no breaches of its systems.

Instead, if the hackers do have access to iCloud accounts, Apple suggests previously compromised third-party services are at fault. From an Apple spokesperson:

There have not been any breaches in any of Apple's systems including iCloud and Apple ID," the spokesperson said. "The alleged list of email addresses and passwords appears to have been obtained from previously compromised third-party services.

Apple's response follows a report from Motherboard that suggests a group of hackers known as the "Turkish Crime Family" have claimed to have access to hundreds of millions of iCloud accounts.


The Turkish Crime Family has threatened to reset the iCloud accounts and remotely wipe victims' Apple devices if Apple does not pay $150,000 in Bitcoin or Ethereum by April 7. If Apple does not pay in three days, the group plans to increase the amount of money it is asking for.

Originally the group was believed to have access to 300 million icloud.com, me.com, and mac.com email addresses, but that number later jumped to 627 million due to additional hackers allegedly stepping forward to provide account credentials. The hackers say at least 220 million of the login credentials are verified to work and do not have two-factor authentication enabled.

With Apple denying a breach, the iCloud account information has likely been obtained from major hacking incidents that have affected companies like Yahoo. iCloud users who have the same username and password that was used for both a hacked site and for iCloud should change their passwords immediately.

The Apple spokesperson also told Fortune the company is "actively monitoring to prevent unauthorized access to user accounts and are working with law enforcement to identify the criminals involved," but did not outline what specific steps are being taken to monitor the situation beyond "standard procedure."

Apple recommends that all iCloud users choose strong passwords, use different passwords for different sites, and turn on two-factor authentication to protect their accounts.

Top Rated Comments

(View all)
Avatar
39 months ago

Typical Apple. Blame others first then admit to fault later, if ever.


Provide evidence before accusing
Score: 50 Votes (Like | Disagree)
Avatar
39 months ago

Typical Apple. Blame others first then admit to fault later, if ever.


Typical hater. Blame Apple first for whatever they have or haven't done then disappear from the thread.
Score: 44 Votes (Like | Disagree)
Avatar
39 months ago

Typical Apple. Blame others first then admit to fault later, if ever.


How are they blaming others? They're just saying people use the same user name and passwords. There was no actual scraping of user names and passwords from iCloud database is what Apple is saying. How the heck is that Apple's fault if people use the same username/passwords?
Score: 42 Votes (Like | Disagree)
Avatar
39 months ago

Typical Apple. Blame others first then admit to fault later, if ever.


But they said THEY have not been compromised.
Score: 27 Votes (Like | Disagree)
Avatar
39 months ago
The people behind this kind of thing need to be set on fire, it's just evil behavior, whether or not they actually have the details they purport to have. I'm going to venture a guess that this, indeed, isn't a hack of Apple itself, and do simply have some password-reuse email/password combinations from other sites.

Time to turn on 2FA, if you haven't already, and never use the same password in more than one place - get a good password manager (I like 1Password) and use it to keep long random passwords that are separate for every site.
Score: 17 Votes (Like | Disagree)
Avatar
39 months ago

"There have not been any breaches in any of Apple's systems including iCloud and Apple ID," the spokesperson said. "The alleged list of email addresses and passwords appears to have been obtained from previously compromised third-party services."

Sounds to me like they're blaming others.


Well, it's not really "blame". It's just assuring that their systems have not been compromised.

There's not a lot they can do if someone creates an account with Apple, and an account with a third-party using the same username and password. The third-party gets hacked and then the username and password are exposed.

How exactly is Apple supposed to protect against that sort of attack? 2 factor authentication? Oh right... they already have that available...
Score: 10 Votes (Like | Disagree)

Top Stories

Kuo: Apple to Launch Several Macs With Arm-Based Processors in 2021, USB4 Support Coming to Macs in 2022

Thursday March 26, 2020 8:19 pm PDT by Joe Rossignol
Apple plans to launch several Mac notebooks and desktop computers with its own custom designed Arm-based processors in 2021, analyst Ming-Chi Kuo said today in a research note obtained by MacRumors. Kuo believes that Arm-based processors will significantly enhance the competitive advantage of the Mac lineup, allow Apple to refresh its Mac models without relying on Intel's processor roadmap,...

Apple Says MacBook Air With Retina Display Can Exhibit Anti-Reflective Coating Issues, Unclear if Eligible for Free Repairs [Updated]

Thursday March 26, 2020 8:16 am PDT by Joe Rossignol
Apple this week acknowledged that MacBook Air models with Retina displays can exhibit anti-reflective coating issues, as indicated in a memo shared with Apple Authorized Service Providers and obtained by MacRumors. "Retina displays on some MacBook, MacBook Air, and MacBook Pro computers can exhibit anti-reflective (AR) coating issues," the memo states. Apple's internal service documentation ...

Hands-On With the New 2020 12.9-Inch iPad Pro

Wednesday March 25, 2020 2:10 pm PDT by Juli Clover
Apple last week announced new 11 and 12.9-inch iPad Pro models, and as of today, the new iPads are arriving to customers. We picked up one of the new 12.9-inch models and checked it out to see just what's new and whether it's worth buying. Subscribe to the MacRumors YouTube channel for more videos. When it comes to design, the new iPad Pro models are identical to the 2018 iPad Pro models, but ...

Apple Considering Delaying iPhone 12 Launch 'by Months'

Wednesday March 25, 2020 12:51 pm PDT by Juli Clover
Apple is preparing to delay the launch of the 2020 iPhones expected to be equipped with 5G technology, according to sources with knowledge of Apple's plans that spoke to Japanese news site Nikkei. Apple has reportedly held internal discussions about the possibility of delaying the launch "by months" over fears of how well iPhones would sell in the current situation, and supply chain sources...

Hands-On With the New $999 MacBook Air

Thursday March 26, 2020 1:45 pm PDT by Juli Clover
Alongside new iPad Pros last week, Apple also refreshed the MacBook Air, adding more storage, faster 10th-generation processors, and an updated keyboard. We picked up one of the new machines to take a look at some of the upgrades added in the 2020 update. Subscribe to the MacRumors YouTube channel for more videos. Design wise, there are no real external changes to the MacBook Air's body,...

Apple Offering 90-Day Free Trials for Final Cut Pro X and Logic Pro X

Thursday March 26, 2020 2:58 pm PDT by Juli Clover
Apple is offering new free trial options for Final Cut Pro X and Logic Pro X, its video and audio editing software designed for professional projects, giving customers 90 days to try them out prior to a purchase. The new longer trial options will be beneficial to those who are working from home, including students who are no longer able to work in a classroom environment, and those who are...

Apple Watch Series 6 Could Feature Touch ID Fingerprint Sensor, Pulse Oximetry and Sleep Tracking Support

Friday March 27, 2020 11:28 am PDT by Juli Clover
The upcoming Apple Watch Series 6 set to be released this fall could include a Touch ID fingerprint sensor built into the crown of the device, according to Israeli site The Verifier, which cites "senior sources" who have worked with its staff for a "number of years" as the source of the rumor. It's not clear how the alleged Touch ID fingerprint sensor would be implemented, as the Digital...

Apple Launches COVID-19 Website and App With Screening Tool and Resources

Friday March 27, 2020 9:00 am PDT by Joe Rossignol
Apple today announced that it has released a new COVID-19 website and iPhone app with a screening tool and other resources to help people stay informed and take the proper steps to protect their health during the spread of the novel coronavirus. Apple partnered with the CDC, the White House Coronavirus Task Force, and FEMA on this initiative. The website and app allow users to answer a...

Deals: Huge Refurbished iPhone Sale Discounts iPhone 7, 8, X, XR, and XS (From $120)

Friday March 27, 2020 5:47 am PDT by Mitchel Broussard
Woot is back today with a big sale on refurbished iPhones, including markdowns on the iPhone 7, iPhone 7 Plus, iPhone 8, iPhone 8 Plus, iPhone X, iPhone XR, iPhone XS, and iPhone XS Max. Note: MacRumors is an affiliate partner with Woot. When you click a link and make a purchase, we may receive a small payment, which helps us keep the site running. As with every Woot purchase, those...

A12Z Bionic Chip in iPad Pro Allegedly a Renamed A12X With Extra GPU Core Enabled

Thursday March 26, 2020 6:35 pm PDT by Juli Clover
Apple's new 2020 iPad Pro models are equipped with an A12Z Bionic processor that's remarkably similar to the A12X chip in the 2018 iPad Pro models, offering little in the way of performance improvements. The A12Z does, however, feature an 8-core GPU while the A12X includes a 7-core GPU, which sets them apart, but new evidence shared by NotebookCheck suggests that the A12Z Bionic is simply a...