People are still going to believe it's Apples fault because of the misleading media but I just hope this won't hurt Apple in any way.
Got a tip for us?
Let us know
Become a MacRumors Supporter for $50/year with no ads, ability to filter front page stories, and private forums.
Celebrity iCloud Accounts Compromised by Weak Passwords, Not iCloud Breach
- Thread starter MacRumors
- Start date
- Sort by reaction score
Maybe she was according to the guy that hacked her account.
It's all subjective you know.
Well, they didn't leave the door open, instead the lock in the door wasn't the best one you could get. The door was still locked and the thieves still had to break in.
Stop blaming the victims.
How about other governments or "states" to cause stupid news agencies to give less time to stories about their recent activities? Naked celebrity news is so much more important and deserving of news time and inches than tank invasions and genocide!
I use simple passwords at times also... but c'mon. if you are storing something sensitive like banking information, or a shot of your hooha's... maybe you SHOULD use a stronger password.
Uh... yeah, when they ask you what your middle name is, maybe it's not a good idea to use your actual middle name. Make something up like "poindexter" or something.
Fixed that for you.
It's not "being a celebrity" that makes people less likely to be security aware; it's "being a celebrity" that makes people more likely to be a target of an attack. I'm sure your friend's sister's boyfriend has just as easy-to-hack credentials as $randomcelebrity; it's just that your friend's sister's boyfriend is much less likely to be worthy of attacking.
It was a big holiday weekend, low resources at Apple and most people on holiday. What do you want them to do, issue a press release when they have no information at all, invent stuff? They said right away they were investigating and that's all they could really do initially.
Stop saying stop blaming the victim.
It can be pointed out that if someone has insufficient security they put themselves at risk. There is an opportunity to learn here. This rhetorical "STOP BLAMING THE VICTIM!!!" chorus is teaching no one anything except how to cry victim.
Some of the images did come from compromised iCloud accounts.
"After more than 40 hours of investigation, we have discovered that certain celebrity accounts were compromised by a very targeted attack on user names, passwords and security questions, a practice that has become all too common on the Internet."
And you're right, from what I've read a lot of these photos have been shared for months or years before being leaked. That doesn't change Apple's own partial acknowledgement. With all that said, my original premise stands. The bashing seemed to be more in your mind than in that headline. It's just my opinion. You may be seeing something I'm not.
Banks use a much more secure system though, for instance mine has a user code, then random numbers from a passcode and then random characters from a password, you get TWO attempts to get them all right otherwise the account is locked.
Except the door in this case was locked and BROKEN INTO. God, why doesn't school teach logic, reasoning, and analogies.
Just a thought?
Maybe someone has mentioned this already.
People are blaming Apple saying they should have a password attempt limit, but what if the "hackers" attempted the password on another site repeatedly until they got it and then just tried it on the Apple account?
I don't know if Apple has an incorrect password limit, but if they do, this could could have been how they got around it.
Maybe someone has mentioned this already.
People are blaming Apple saying they should have a password attempt limit, but what if the "hackers" attempted the password on another site repeatedly until they got it and then just tried it on the Apple account?
I don't know if Apple has an incorrect password limit, but if they do, this could could have been how they got around it.
This is brute force, and any system should lock down an account if someone tries to log in with 10 different passwords. The pattern here isn't someone forgetting if the 5th character was an 1,L, or an l, the pattern is of someone trying the most common passwords.
Don't you just HATE women? I mean, they're just so STU-- oh crap, sorry, we're not supposed to have our misogyny meetings in public.
If you are vain enough to have a big screen TV, Then you probably have a poor lock on your door.
If you don't want someone taking your TV then never buy one in the first place. No one on should be allowed to protest having their TV stolen, no matter who it was intended for.
There is actually no requirement that answers to these "security questions" have to be truthful. "Name of your high school" = 39dji39afnaloef is perfectly fine and reasonably secure.
There was a backdoor issue. It allowed unlimited login attempts but had to be through a specific service's interface into iCloud...and was accomplished with a special script. It wasn't something as obvious as being able to simply try logging in an unlimited amount of times with any user account through any iCloud interface.
There is no way in hell I'm looking for "proof" for you, you're the conspiracy theorist here.
If they did everything they could, then yes. But if they acted carelessly, I think they share some of the blame.
But this discussion is very personal so nobody is right or wrong. I just think people learn how to protect themselves when they feel some of the blame. Otherwise they'll go on their usual ways and get hacked again in the future.
Feeling pretty good about yourself, huh?
Victim blaming's fun
I am because I'm not stupid enough to use pathetically small passwords.
Because we don't know that they took more than a few password attempts to get in? If the answers to all security questions were all easily available they might not have needed to make a single guess at the passwords.
And that's not how photo stream works...it's obvious you don't know jack**** about Apple's tech, why are you here?
Backing things up to iCloud is not done the way you think it's done, and backing up photos even less so.
Did you even read my post? I said the same exact thing you just did. If you don't lock your doors, you're to blame just as much as the thief who walks in the unlocked door.
A point people don't want to see or admit to. ALL of Apples systems should lock you out if you enter the wrong password too many times, in fact all online systems should do that regardless.