However, security researcher Graham Cluley has claimed it's "hard to believe that this could have been successfully used against a wide number of accounts without detection in a short space of time".Īnother option put forward by Cluley and other researchers is that the victims of the attack had either an easy-to-guess password or password reset answers. Once the password had been discovered, the attacker could then use it to access other areas of iCloud.Īpple has since patched the hole, although there are claims made on Reddit that the patch is only active in certain regions. The code apparently lets attackers guess passwords repeatedly through Find My iPhone without triggering a lockout or alerting the target. The hacker claimed to have pictures of over 100 female celebrities in total. A flaw in Apple's "Find My iPhone" service could have been behind an attack that led to hundreds of celebrities' iCloud accounts being compromised.Ī proof-of-concept Python script developed by HackApp for brute forcing iCloud had been circulating online for several days before nude photos of 17 famous women, including Hunger Games actress Jennifer Lawrence and Scott Pilgrim lead actress Mary E Winstead appeared online - apparently stolen from their iCloud accounts.
0 Comments
Leave a Reply. |
Details
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |