Welcome Guest! To enable all features please Login or Register.

Notification

Icon
Error

Options
View
Go to last post Go to first unread
Offline paul  
#1 Posted : Monday, September 1, 2014 5:40:28 AM(UTC)
News


Rank: Member

Reputation:

Groups: Registered
Joined: 9/23/2007(UTC)
Posts: 25,073

Was thanked: 3 time(s) in 3 post(s)
It's a little bit awkward when you're flipping through photos in front of a group and come upon that one sexy pose in skimpy clothing you forgot was on there, but imagine if someone hacked your phone and uploaded all your private photos for the entire world to see. Jennifer Lawrence and several other celebrities don't need to imagine because a flaw in Apple's Find My iPhone service may have allowed hackers to do just that.

According to various reports, someone posted a Python script on Github for a password brute force proof of concept to Apple's iCloud service. Brute force attacks use a script to continually guess passwords until it finds the correct one, and in this instance, it leveraged a vulnerability in Find My iPhone that allowed for repeated password guesses without locking out the hacker or notifying the user.

Jennifer Lawrence
Image Source: Flickr (Gage Skidmore)

A day after the code was posted to Github, celebrity photos began appearing on the web, including nude selfies, with anonymous 4chan users claiming to have plucked the photos from compromised celebrity iCloud accounts. According to ZDNet, other celebrity victims may have included Ariana Grande, Victoria Justice, Kate Upton, Kim Kardashian, Rihanna, Kirsten Dunst, and Selena Gomez, among others.

The author of the proof of concept isn't ready to concede that his tool is the likely culprit in all of this, though he does say it's a possibility. He told The Next Web, "I've not seen any evidence yet, but I admit that someone could use this tool."

Apple has rolled out a fix for the vulnerability so that when hackers try to brute force their way into someone's iCloud account through Find My iPhone, they're locked out after five unsuccessful attempts.
Offline Ricofrost  
#2 Posted : Monday, September 1, 2014 3:31:09 PM(UTC)
RiCoFrost


Rank: Advanced Member

Reputation:

Groups: Registered
Joined: 6/20/2012(UTC)
Posts: 636

Dam thats going to be a pretty big trust hit to apple users.

Offline sevags  
#3 Posted : Monday, September 1, 2014 5:19:52 PM(UTC)
sevags


Rank: Advanced Member

Reputation:

Groups: Registered
Joined: 3/24/2012(UTC)
Posts: 1,117
Man
United States
Location: "The Valley"

This is why I've always told people NOT to backup photos to icloud. Nothing is safe, but any personal information should be kept locally! Or better yet mentally! Including those nude mental snapshots lol

Offline Realneil  
#4 Posted : Monday, September 1, 2014 7:05:36 PM(UTC)
realneil


Rank: Advanced Member

Reputation:

Groups: Administrators, Moderator, Registered
Joined: 4/8/2009(UTC)
Posts: 8,695
Man
Location: Shenandoah Valley, Virginia

Thanks: 2 times

Putting your pictures 'out there' is really putting your pictures OUT THERE?


LOL!

Users browsing this topic



Forum Jump  
You cannot post new topics in this forum.
You cannot reply to topics in this forum.
You cannot delete your posts in this forum.
You cannot edit your posts in this forum.
You cannot create polls in this forum.
You cannot vote in polls in this forum.