Become a MacRumors Supporter for $25/year with no ads, private forums, and more!

Hackers Claim Access to 300 Million iCloud Accounts, Say Apple Refused to Pay $75,000 Ransom

MacRumors

macrumors bot
Original poster
Apr 12, 2001
50,457
11,849



A single hacker or group of hackers who have identified themselves as the "Turkish Crime Family" allegedly have access to at least 300 million iCloud accounts, but they are willing to delete the alleged cache of data if Apple pays a ransom by early next month, according to a report from Motherboard.


The hackers have allegedly demanded $75,000 to be paid in cryptocurrencies Bitcoin or Ethereum, or $100,000 worth of iTunes gift cards, by April 7, or they will reset a number of the iCloud accounts and remotely wipe victims' Apple devices. The email accounts are said to include @icloud.com, @me.com, and @mac.com addresses.

The report said that the hackers "provided screenshots of alleged emails between the group and members of Apple's security team," while the hackers also shared an unlinked YouTube video that seemingly shows proof of them accessing "an elderly woman's iCloud account" and "the ability to remotely wipe the device."

If the screenshotted email is accurate, which it very well might not be, a member of Apple's security team turned down the ransom, noting that Apple does "not reward cyber criminals for breaking the law."
"We firstly kindly request you to remove the video that you have uploaded on your YouTube channel as it's seeking unwanted attention, second of all we would like you to know that we do not reward cyber criminals for breaking the law," a message allegedly from a member of Apple's security team reads. (Motherboard only saw a screenshot of this message, and not the original). The alleged Apple team member then says archived communications with the hacker will be sent to the authorities.
Apple did apparently request to see a sample of the dataset, according to the report, but it is unclear if the hackers obliged.

"I just want my money and thought this would be an interesting report that a lot of Apple customers would be interested in reading and hearing," one of the hackers said.

The report should be treated with a healthy dose of skepticism, as these allegations could be untrue, and Apple has yet to confirm or comment on the matter.

Update: The group claims additional hackers have stepped forward and shared additional account credentials, putting the number of accessible iCloud accounts at over 627 million, according to security-centric website CSO Online.

Article Link: Hackers Claim Access to 300 Million iCloud Accounts, Say Apple Refused to Pay $75,000 Ransom
 

zorinlynx

macrumors 603
May 31, 2007
6,280
9,633
Florida, USA
Might be a good time to:

1) Make sure you have your own independent backup of all your data in iCloud. You should do this regardless of hacker threats.
2) Change your Apple ID password.
3) Check your signed-in devices list for any devices you don't recognize, and remove them.
4) For the love of whatever deity you believe in, enable two-factor authentication. C'mon, people. :)
 
Comment

gmanist1000

macrumors 68030
Sep 22, 2009
2,688
294
Might be a good time to:

1) Make sure you have your own independent backup of all your data in iCloud. You should do this regardless of hacker threats.
2) Change your Apple ID password.
3) Check your signed-in devices list for any devices you don't recognize, and remove them.
4) For the love of whatever deity you believe in, enable two-factor authentication. C'mon, people. :)

Grandma doesn't know how to do any of that :(
 
Comment

imicca

macrumors regular
Nov 15, 2013
112
226
Yerevan, London
"Turkish Crime Family"
Hate to say this but, it does not look like Turks learn anything that history teaches them.
Worst possible name ever for a hacking group. Could not come up with something creative? Looks like a name of bunch of thugs who attack tourists.
 
  • Like
Reactions: Agit21
Comment

jvaska

macrumors 6502
Feb 18, 2002
432
18
Haiti/NYC
Doesn't every Apple account id have an icloud account (email) with it? I don't use mine...I don't want it...but there it is...
 
Comment

tkukoc

Cancelled
Sep 16, 2014
1,533
1,914
Going with... don't think so. You want iTunes gift cards as payment.. have icloud account information of random people? Good grief why would anyone buy into this nonsense, there's more holes here then swiss cheese.
 
Comment

Yod4

macrumors newbie
Sep 12, 2014
14
32
Might be a good time to:

1) Make sure you have your own independent backup of all your data in iCloud. You should do this regardless of hacker threats.
2) Change your Apple ID password.
3) Check your signed-in devices list for any devices you don't recognize, and remove them.
4) For the love of whatever deity you believe in, enable two-factor authentication. C'mon, people. :)

If the hack is based on password theft, Apple could push all (affected) users to change passwords immediately in order to neutralize the offenders. If it is some other kind of (server based) exploit, well then changing passwords wouldn't be of any help anyway.
 
Comment

Yod4

macrumors newbie
Sep 12, 2014
14
32
"Turkish Crime Family"
Hate to say this but, it does not look like Turks learn anything that history teaches them.
Worst possible name ever for a hacking group. Could not come up with something creative? Looks like a name of bunch of thugs who attack tourists.

It seems like the hackers are trying to gain credibility by using the recent much-publicized Twitter hack by a Turkish group (who knew Turkey made hackers, right?). I'm calling BS.
 
  • Like
Reactions: imicca
Comment

dannys1

macrumors 68030
Sep 19, 2007
2,780
5,017
UK
Sounds like a kid bought a hacked iCloud account from the dark web and then tried to hold Apple web chat to ransom :D
[doublepost=1490197037][/doublepost]
Am I the only one who just got a "Session Expired" on all my Apple products? :S

No, that happens all the time, in fact far too frequently for my liking. I wish there was an option on iOS devices to not have to enter your Apple ID password for no reason what so ever on a regular basis too.
 
Comment
Register on MacRumors! This sidebar will go away, and you'll see fewer ads.