Apple's Beats brand in April unveiled the Powerbeats Pro, a redesigned wire-free version of its popular fitness-oriented Powerbeats earbuds.
Apple Responds to Hack Threats, Says There Were No iCloud or Apple ID Breaches
In response to a ransom threat in which hackers are claiming to have access to more than 600 million iCloud accounts, Apple told Fortune there have been no breaches of its systems.
Instead, if the hackers do have access to iCloud accounts, Apple suggests previously compromised third-party services are at fault. From an Apple spokesperson:
The Turkish Crime Family has threatened to reset the iCloud accounts and remotely wipe victims' Apple devices if Apple does not pay $150,000 in Bitcoin or Ethereum by April 7. If Apple does not pay in three days, the group plans to increase the amount of money it is asking for.
Originally the group was believed to have access to 300 million icloud.com, me.com, and mac.com email addresses, but that number later jumped to 627 million due to additional hackers allegedly stepping forward to provide account credentials. The hackers say at least 220 million of the login credentials are verified to work and do not have two-factor authentication enabled.
With Apple denying a breach, the iCloud account information has likely been obtained from major hacking incidents that have affected companies like Yahoo. iCloud users who have the same username and password that was used for both a hacked site and for iCloud should change their passwords immediately.
The Apple spokesperson also told Fortune the company is "actively monitoring to prevent unauthorized access to user accounts and are working with law enforcement to identify the criminals involved," but did not outline what specific steps are being taken to monitor the situation beyond "standard procedure."
Apple recommends that all iCloud users choose strong passwords, use different passwords for different sites, and turn on two-factor authentication to protect their accounts.
Instead, if the hackers do have access to iCloud accounts, Apple suggests previously compromised third-party services are at fault. From an Apple spokesperson:
There have not been any breaches in any of Apple's systems including iCloud and Apple ID," the spokesperson said. "The alleged list of email addresses and passwords appears to have been obtained from previously compromised third-party services.Apple's response follows a report from Motherboard that suggests a group of hackers known as the "Turkish Crime Family" have claimed to have access to hundreds of millions of iCloud accounts.
The Turkish Crime Family has threatened to reset the iCloud accounts and remotely wipe victims' Apple devices if Apple does not pay $150,000 in Bitcoin or Ethereum by April 7. If Apple does not pay in three days, the group plans to increase the amount of money it is asking for.
Originally the group was believed to have access to 300 million icloud.com, me.com, and mac.com email addresses, but that number later jumped to 627 million due to additional hackers allegedly stepping forward to provide account credentials. The hackers say at least 220 million of the login credentials are verified to work and do not have two-factor authentication enabled.
With Apple denying a breach, the iCloud account information has likely been obtained from major hacking incidents that have affected companies like Yahoo. iCloud users who have the same username and password that was used for both a hacked site and for iCloud should change their passwords immediately.
The Apple spokesperson also told Fortune the company is "actively monitoring to prevent unauthorized access to user accounts and are working with law enforcement to identify the criminals involved," but did not outline what specific steps are being taken to monitor the situation beyond "standard procedure."
Apple recommends that all iCloud users choose strong passwords, use different passwords for different sites, and turn on two-factor authentication to protect their accounts.
[ 181 comments ]
Top Rated Comments
(View all)
32 months ago
Typical Apple. Blame others first then admit to fault later, if ever.
Provide evidence before accusing
32 months ago
Typical Apple. Blame others first then admit to fault later, if ever.
Typical hater. Blame Apple first for whatever they have or haven't done then disappear from the thread.
32 months ago
Typical Apple. Blame others first then admit to fault later, if ever.
How are they blaming others? They're just saying people use the same user name and passwords. There was no actual scraping of user names and passwords from iCloud database is what Apple is saying. How the heck is that Apple's fault if people use the same username/passwords?
32 months ago
Typical Apple. Blame others first then admit to fault later, if ever.
But they said THEY have not been compromised.
32 months ago
The people behind this kind of thing need to be set on fire, it's just evil behavior, whether or not they actually have the details they purport to have. I'm going to venture a guess that this, indeed, isn't a hack of Apple itself, and do simply have some password-reuse email/password combinations from other sites.
Time to turn on 2FA, if you haven't already, and never use the same password in more than one place - get a good password manager (I like 1Password) and use it to keep long random passwords that are separate for every site.
Time to turn on 2FA, if you haven't already, and never use the same password in more than one place - get a good password manager (I like 1Password) and use it to keep long random passwords that are separate for every site.
32 months ago
"There have not been any breaches in any of Apple's systems including iCloud and Apple ID," the spokesperson said. "The alleged list of email addresses and passwords appears to have been obtained from previously compromised third-party services."
Sounds to me like they're blaming others.
Well, it's not really "blame". It's just assuring that their systems have not been compromised.
There's not a lot they can do if someone creates an account with Apple, and an account with a third-party using the same username and password. The third-party gets hacked and then the username and password are exposed.
How exactly is Apple supposed to protect against that sort of attack? 2 factor authentication? Oh right... they already have that available...
32 months ago
('https://www.macrumors.com/2017/03/22/apple-responds-to-hack-threats/')
The Turkish Crime Family has threatened to reset the iCloud accounts and remotely wipe victims' Apple devices if Apple does not pay $150,000 in Bitcoin ('http://www.csoonline.com/article/3183990/security/hackers-threaten-to-wipe-millions-of-apple-devices-demand-ransom.html') or Ethereum by April 7. If Apple does not pay in three days, the group plans to increase the amount of money it is asking for.
Bitcoin is still alive? o_O
They could have just ask for payment in form of ApplePay instead. :p
32 months ago
That would explain my iPad telling me someone in west Sacramento trying to login to my account.
[ Read All Comments ]
Apple today sent out emails to customers about its latest Apple Pay promo, which will see the company donating $10 to the National Park Foundation for Apple Pay purchases made from the Apple...
We're just a few weeks away from the unveiling of this year's iPhone lineup as well as the official release of iOS 13 and Apple's other new operating system versions, and we're...
For this week's giveaway, we've teamed up with RAVPower to offer MacRumors readers a chance to win a 61W USB-C Power Adapter and a USB-C to Lightning cable, which can be used to fast charge...
Satechi this summer launched its first HomeKit-compatible product, the Dual Smart Outlet, a HomeKit plug that turns dumb appliances and electronics into smart electronics that can work alongside...
As we head into the weekend, there are a few notable deals going on today that include an all-new MacRumors exclusive offer from Eve, Best Buy's anniversary sale with lowest-ever iPad prices, and...
Version 7 of Heart Analyzer was released today, and the popular third-party heart-rate app for iPhone and Apple Watch has gained some additional features for users looking for even deeper insight...
Apple today seeded the seventh beta of watchOS 6, the software that runs on the Apple Watch. The new beta comes a week after the sixth beta and two months after Apple first unveiled the new watchOS...
Apple today seeded seventh beta of an upcoming tvOS 13 update to developers, one week after seeding the sixth beta and two months after unveiling the tvOS 13 software at the Worldwide Developers...
