Scammer Infiltrated Thousands of iCloud Accounts to Find Nude Photos

by

A criminal from Los Angeles has pled guilty to felony charges after breaking into thousands of iCloud accounts to hunt down nude photos of women, reports The Los Angeles Times.

iCloud General Feature
Hao Kuo Chi collected more than 620,000 private photos and videos by impersonating Apple customer support staff and sending out emails to trick his victims into providing Apple IDs and passwords. Chi used social engineering and phishing schemes to coerce his victims, and he did not breach Apple's ‌iCloud‌ protections.

Chi accessed photos and videos from at least 306 victims across the United States, and most of them were young women. Some of the victims were attacked at the request of people that Chi met online after he marketed himself as "icloudripper4you," a service that could break into ‌iCloud‌ accounts to steal photos and videos.

His unknown co-conspirators would ask Chi to hack a specific ‌iCloud‌ account, and he would respond with a Dropbox link. Chi operated two Gmail addresses "applebackupicloud" and "backupagenticloud," where the FBI found more than 500,000 emails with approximately 4,700 ‌iCloud‌ user IDs and passwords that he had been sent from his victims.

Chi's scam fell apart after he hacked the ‌iCloud‌ account of an unnamed public figure in March 2018 and the photos ended up on pornographic websites. The FBI launched an investigation, and found that a log-in to the victim's ‌iCloud‌ account had come from Chi's home.

Chi has pled guilty to one count of conspiracy and three counts of gaining unauthorized access to a protected computer, and he now faces up to five years in prison for each crime. In a phone call with The Los Angeles Times, Chi said that he was "remorseful" for what he did, but claimed he had a family to support. He said that he was afraid public exposure of his crimes would "ruin [his] whole life."

The unauthorized ‌iCloud‌ access perpetrated by Chi is similar to a 2014 attack that saw hackers gain access to celebrity iCloud accounts through their username and password.

After that incident, Apple bolstered ‌iCloud‌ account security, offering two-factor authentication and sending emails whenever there's a new login to an ‌iCloud‌ account. The people involved in Chi's attack likely did not have two-factor authentication enabled.

Apple recommends two-factor authentication for all Apple IDs to add extra security, and it offers a support document on how to avoid phishing schemes like the one used by Chi.

Tag: iCloud
Related Forum: Apple Music, Apple Pay/Card, iCloud, Fitness+

Popular Stories

Apple CarPlay Ultra instrument cluster themes 01

Apple's CarPlay Ultra Is Here – Does Your iPhone Support It?

Thursday May 15, 2025 5:17 am PDT by
Apple's recently announced CarPlay Ultra promises a deeply integrated in-car experience, but not all iPhone users will be able to take advantage of the new feature. According to Apple's press release, CarPlay Ultra requires an iPhone 12 or later running iOS 18.5 or later. This means if you're using an iPhone 11, iPhone XR, or any older model, you'll need to upgrade your device to access...
Read Full Article
Apple CarPlay Ultra instrument cluster themes 01

Apple's 'CarPlay Ultra' Experience Now Available

Thursday May 15, 2025 5:07 am PDT by
Apple today announced that its next-generation CarPlay experience, now dubbed "CarPlay Ultra" begins rolling out today, starting with Aston Martin vehicles. Subscribe to the MacRumors YouTube channel for more videos. CarPlay Ultra is now available with new Aston Martin vehicle orders in the U.S. and Canada. It will also be available for existing models that feature the brand's next-generation ...
Read Full Article138 comments
iPhone 17 Air Pastel Feature

iPhone 17 Air Battery Capacity and Weight Allegedly Revealed

Monday May 19, 2025 2:22 am PDT by
Apple is expected to launch an all-new ultra-thin iPhone 17 Air later this year, and while there have been plenty of rumors about the camera's overall design and thinness, we haven't heard any details about the device's weight and battery capacity until now. According to the leaker going by the account name "yeux1122" on the Korean-langauge Naver blog, the 6.6-inch iPhone 17 Air has a weight ...
Read Full Article57 comments
CarPlay Ultra Climate Controls

Apple Says These Vehicle Brands Plan to Offer All-New CarPlay Ultra

Thursday May 15, 2025 8:13 am PDT by
Apple today announced the launch of CarPlay Ultra, the long-awaited next-generation version of its CarPlay software system for vehicles. CarPlay Ultra features deep integration with a vehicle's instrument cluster and systems, built-in Radio and Climate apps, customizable widgets, and more. The interface is tailored to each vehicle model and automaker's identity, and drivers can also adjust...
Read Full Article127 comments
iOS 18 Siri Personal Context

Apple Will Reportedly Be More Cautious About Announcing New Features Well in Advance

Sunday May 18, 2025 2:50 pm PDT by
Apple plans to mostly stop announcing new features more than a few months before they are ready to launch, according to Bloomberg's Mark Gurman and Drake Bennett. The pair of reporters revealed this noteworthy tidbit towards the bottom of a lengthy report about Apple's artificial intelligence shortcomings today. This alleged change in strategy comes after Apple was forced to delay its more...
Read Full Article153 comments
Apple Intelligence General Feature

Report: Apple's Next-Gen Version of Siri Is 'On Par' With ChatGPT

Monday May 19, 2025 9:00 am PDT by
Apple has big plans to improve Siri over the next few years, Bloomberg's Mark Gurman and Drake Bennett report. Some Apple executives are now reportedly pushing to turn Siri into a true ChatGPT competitor. A next-generation, chatbot version of Siri has reportedly made significant progress during testing over the past six months; some executives allegedly now see it as "on par" with recent...
Read Full Article149 comments

Top Rated Comments

ComRadMac Avatar
ComRadMac
49 months ago
"he was afraid public exposure of his crimes would "ruin [his] whole life."

Yes, that is the plan. Let's hope it works.
Score: 48 Votes (Like | Disagree)
JMacHack Avatar
JMacHack
49 months ago

uploading nudies to iCloud has got to be the most moronic computer activity a person can do
Incorrect, giving out the password to your cloud-hosted nudies is more stupid.
Score: 28 Votes (Like | Disagree)
iObama Avatar
iObama
49 months ago
"I had a family to support."

Wonder what they're gonna do now that you're in prison, *******.
Score: 27 Votes (Like | Disagree)
daved2424 Avatar
daved2424
49 months ago
To all the smart alecs on here, not everyone is as tech savvy as you and I. It is an unfortunate fact that some people are easy targets. Victim blaming is not big and it’s not clever, no matter how “dumb” you think the victims are.

Chances are though, they have better interpersonal skills than the lot you and are quite likely just nicer human beings.
Score: 27 Votes (Like | Disagree)
LukeDizzle Avatar
LukeDizzle
49 months ago
Link?

Asking for a friend
Score: 18 Votes (Like | Disagree)
Le Big Mac Avatar
Le Big Mac
49 months ago
At least 620,000 photos/videos of people having sex have been uploaded to iCloud? Come on people!
Score: 17 Votes (Like | Disagree)
Read All Comments