Celebrity iCloud Security Intrusion Prompts Apple Response
The leak coque iphone 5c abstrait online of nude celebrity photos this weekend, including those of coque iphone 6 macarons Oscar winner Jennifer Lawrence, has raised ire about the security controls protecting Apple’s iCloud service and the security of similar cloud coque iphone 4 based services.
Following coque iphone 5s smileys 40 hours of investigation on the company end, Apple said the large release of several female celebrities’ photos in intimate moments which also included musician Ariana Grande and model Kate Upton did not stem from a breach of its systems. The company instead coque iphone 5s miraculous blamed the lapse on a targeted phishing attack against the celebrities.
have discovered coque iphone 5c case amazon that certain celebrity accounts were compromised by a very targeted attack on user names, passwords and security questions, a practice that has become all too common on the Internet. None of the cases we have investigated coque huawei p9 has resulted from any breach in any of coque iphone coque iphone 5 5s appareil Apple systems including image pour coque iphone 5c iCloud or Find my iPhone, Apple said in a statement. Some of the photos were reportedly fake, according to some of the victims, but Lawrence confirmed at least one of the photos of herself was genuine. The attackers apparently used the “Find My iPhone” service to gain access into the iCloud service.
The API for the “Find My iPhone” app should have prevented an attacker from brute forcing their way into coque iphone 6 charge the celebrity accounts, said Rob VandenBrink, a threat handler at the Sans Internet Storm Center, in an analysis of the story. People who value their data need to ensure stronger protections are in place, said Vandenbrink, a senior enlever coque iphone 6 consulting engineer at Metafore, a Canadian solution provider.
“Once an account password is successfully guessed, all iCloud data for the account is available to the attackers,” he wrote. “So no rocket science, no uber hacking skills [here] just one exposed attack surface, basic coding skills and some persistence.”
Security experts agree users are often to blame for using weak or duplicate passwords across the Web services they use. It is ultimately the consumer responsibility to continue to protect their data by using strong and unique passwords and, if required, that other protections are put in place, said Tripwire security analyst Ken Westin.
just like anywhere else. When you walking on the street, you can be secure coque iphone 6 s flamant rose if you aware of your surroundings, Westin said. have to make sure you not going into rough neighborhoods and that kind of thing. It the same thing online. celebrity victims also may not have realized their personal data and photos were instantly being backed up to the iCloud, Westin said. Users should be aware of their default settings and continue to be cautious, he said.
NEXT: Solution Providers Say What Impact This Could Have on Apple, Upcoming Announcement
The news could pose a setback for Apple, some solution coque iphone 6 snowlizard slxtreme providers said.
Apple has a PR problem on their hands, said Westborough, Mass. based solutions provider Cumulus Global CEO Allen Falcon. And the timing isn’t great with the company reportedly ready to make waves in the mobile payments space and healthcare industry two areas dealing with confidential information at its event next week, Falcon said.
“It’s not a great time to have this happen to Apple given what is expected to be announced next week, but it isn’t clear if it is an issue with Apple or iCloud,” he said. “They’ll have to increase what they coque iphone 6 psg jordan say about security, but I don’t think it’ll be a killer to what they announce. I’d be very surprised if they mentioned it directly at their event. They might have more information and bullet coques personnalisees iphone 5 5s se points about security than coque iphone 5c de l’om they would have otherwise.”
Apple needs to get its users to embrace two factor authentication and advocate that its customers use stronger security measures, said Michael Aquino, director of cloud services for managed service provider Cetan. Solution providers also need to help users by offering tools and educating them about having safeguards coque iphone 6 rabat in place to coque iphone 5s deux coter protect data coque huawei p20 in the cloud, Aquino said.
password is so easy, but it so vulnerable, he said. (the IT community is) going to have to come up with something else. a user base that is educated about security threats is important, added Chad action coque iphone 5s Boeckmann, founder and CEO of Minneapolis based Secure Digital Solutions.
force is one of the oldest forms of account compromise we know about in the computer age. Seeing this is being applied to cloud accounts is no surprise, Boeckmann said. Alerts should be sent to users so the account is locked out due to multiple unsuccessful attempts. That gives a head up to the user. I think there very little responsibility on the service provider end. It should be on the user, but the service provider should give an opportunity to lock out (the solution). Robert Westervelt and Ramin Edmond contributed to this story…