Naked celebrity photo hack targeted attack, not iCloud breach: Apple

Arthur

Honorary Master
Joined
Aug 7, 2003
Messages
25,157
Look, if Apple says a breach is not a breach then that's the end of it.

They should patent iBreach. It's a genuinely new development of the English language.
 

CuppaJoe

Senior Member
Joined
Jun 4, 2014
Messages
532
Wonder if Samsung is not behind it?

Apple did cost them a lot of money with all the patent wars.

The timing of this debacle is very interesting. It happened just as Apple is about to release their new software updates, which are even more integrated into iCloud.

Even if Apple can prove iCloud wasn't hacked, the damage is done. People will remain suspicious.
 
Last edited:
K

kingrob

Guest
Hahaha....seems Apple is just as accountable as our government.
 

Nerfherder

Honorary Master
Joined
Apr 21, 2008
Messages
25,473
Semantics.... if someone can get photo's out of any account then that means the security is flawed.

Its different to iCloud being breached... but the security loophole is on them.
 

CuppaJoe

Senior Member
Joined
Jun 4, 2014
Messages
532
Semantics.... if someone can get photo's out of any account then that means the security is flawed.

Its different to iCloud being breached... but the security loophole is on them.
It is not a loophole if the correct username and password is entered and then granted access.

If it was, then every other setup across the world that does not use 2-factor verification by default is guilty of it.
 

HDS

Expert Member
Joined
Mar 3, 2013
Messages
1,851
It is not a loophole if the correct username and password is entered and then granted access.

If it was, then every other setup across the world that does not use 2-factor verification by default is guilty of it.
Thought so too. 99% chance the details were phished. If the guy did "hack" her iCloud, then Apple should find and hire him.
 

backstreetboy

Honorary Master
Joined
Jun 15, 2011
Messages
19,389
It is not a loophole if the correct username and password is entered and then granted access.

If it was, then every other setup across the world that does not use 2-factor verification by default is guilty of it.
It is a loophole if you are given unlimited retries on an incorrect password entered.
 

rsfriend

Well-Known Member
Joined
Jan 3, 2013
Messages
234
The unlimited retries (note that this was only on the Find my iPhone service apparently) is definitely a hole and does appear to have been patched. However there's also still no actual evidence to prove that all the photos were stolen from iCloud other than the comment of the person who released them. Some of the photos a reportedly taken on BlackBerry/Android devices hence may have come from other sources.

Not saying that Apple's right/wrong here - they clearly have security issues that need to be addressed - but they are an easy target and there may have been some jumping to incorrect conclusions involved here. And it's not helped by media that loves hype and thinks nothing of "inventing the truth" when the info they want isn't available (or isn't click-bate).

And of course you could go the conspiracy theorist route of the alignment of the release with Apple's product launch next week. Hard to believe it's anything other than an unfortunate coincidence in reality but it would be a new low in unethical, competitive marketing if true. In an ultra-competitive market some companies will put profits ahead of ethics but still hard to believe anyone would sink this low.
 

kianm

Honorary Master
Joined
Jan 13, 2014
Messages
10,528
It is a loophole if you are given unlimited retries on an incorrect password entered.
Well that would be another story if it was actually by brute force. Otherwise if it was phishing then it wasn't' really a hack/loophole
 

kianm

Honorary Master
Joined
Jan 13, 2014
Messages
10,528
“The people who put it online were trying to trade photos for bitcoins,” he said.
Geeks trying to get funding for games :D . Are these celebrities' t1ts that important to some people??
 

Biscuit1018

Expert Member
Joined
Jan 16, 2008
Messages
1,123
Semantics.... if someone can get photo's out of any account then that means the security is flawed.

Its different to iCloud being breached... but the security loophole is on them.
That simply isnt true

I dont know how the breach happened but assume the following

- Someone hacks another cloud service. Let's say Amazon for the purposes of argument only. Amazon is a good one though because it doesnt limit logon attempts (or didnt)

- The hacked user, uses the same email address and password on iCloud

- iCloud gets logged into in the normal way.

In that example how would it be Apple's fault??

If people reuse passwords (I did until recently) then their risk is exponentially increased
 
Top