Hackers Claim Access to 300 Million iCloud Accounts, Say Apple Refused to Pay $75,000 Ransom

[knemonic]

The problem is, the hackers wouldn't use these gift cards to download music, but to sell them to unsuspecting victims.

I get that, but let's say they sell them on Raise.com, they lose a ton of money (probably would get less than the cash demand) cause no one pays full price for gift cards and then there are fees, Apple kills the cards, people that bought them on raise are pissed cause they can't use them, file a case, find that they were fraudulent cards, reverse the purchase of the gift cards, hackers are left with nothing.

F'ng amateurs, dude.

Serisouly, they sound like 8 year olds, dude.

 

[dreamlikestate]

Step 1 . Create fake news
Step 2 . Send out bogus emails from "apple" to change password
step 3 . Profit

I received this just yesterday:

Your АppIe ID was logged into from a new browser.

lР address: 90.79.86.181 ( Paris, FRANCE )
Вrowser: Chrome on Windows 10.1

For your pro.tection, your АppIe ID is auto.matically lock.ed.

If you have not si.gned in to АppIe ID recently and believe some.one may have acc.essed your acc.ount, go to ( https://apρIeid.αррIe.com/Verify ) and ver.ify your acc.ount.

Sincerely,

АppIe Sup.port

 

[PS8409]

If it were a real threat, would we really know about it? They lose all leverage once it's made public.

 

[7thson]

Just an FYI for anyone not familiar with this: Two factor authentication is not the same as two step verification. Just set up two factor because Apple requires it for HomeKit integration, but was previously using 2 step. They, Apple, would like people to switch to two factor, but don't seem to be pushing it.

 

[blacktape242]

so annoying....

 

[keysofanxiety]

I received this just yesterday:

Your АppIe ID was logged into from a new browser.

lР address: 90.79.86.181 ( Paris, FRANCE )
Вrowser: Chrome on Windows 10.1

For your pro.tection, your АppIe ID is auto.matically lock.ed.

If you have not si.gned in to АppIe ID recently and believe some.one may have acc.essed your acc.ount, go to ( https://apρIeid.αррIe.com/Verify ) and ver.ify your acc.ount.

Sincerely,

АppIe Sup.port

Is that exactly what you got (did you copy and paste)? If so, what's with the weird capitalisations and random full stops? Is that how it read?

Sounds like phishing if you just copied/pasted that; they likely used upper case "i" to mask itself as the letter "L", possibly to bypass spam filters and to make the Apple ID account verification URL look legitimate.

So almost certainly a generic phishing email; just a coincidence about the timing.

 

[blacktape242]

If I could delete 300 million iCloud accounts, I'd ask for more than $75,000

more like 750,000,000 bucks right?!

 

[Yuniverse]

"I just want my money..." WHAT? Thieves think it's their money to begin with?

 

[IJ Reilly]

The problem is, the hackers wouldn't use these gift cards to download music, but to sell them to unsuspecting victims.

Gift and other prepaid cards are now a major conduit for money laundering.

 

[triton100]

"Turkish Crime Family"
Hate to say this but, it does not look like Turks learn anything that history teaches them.
Worst possible name ever for a hacking group. Could not come up with something creative? Looks like a name of bunch of thugs who attack tourists.

Yeah that's exactly what they are doing on a Bigger scale and digitally.

 

[ibookg409]

The hackers should claim to be from china. Then Timmy C will do whatever they ask.

 

[arkitect]

Am I the only one who just got a "Session Expired" on all my Apple products? :S

Well I went to check if I do have Two Step authentication on (yes, I do), but when I signed out I had to sign in on my iPhones, iPad and Mac… weird.

Edit: Not just a password sign in but a full Verification Code number… anyway all seems to be working.

 

[IJ Reilly]

According to MacWorld, the hackers have raised their ransom demands to $150,000.

 

[jimothyGator]

According to MacWorld, the hackers have raised their ransom demands to $150,000.

Hackers: Pay us $75,000!
Apple: No
Hackers: Okay, how about $150,000?

I don't think that's how negotiation is supposed to work.

 

[arkitect]

Hackers: Pay us $75,000!
Apple: No
Hackers: Okay, how about $150,000?

I don't think that's how negotiation is supposed to work.

Well, something similar worked for the Cumaean Sibyl.
In the end Tarquinius did cough up.

 

[alvesik]

This better not be true because I refuse to turn on two factor authentication. I'm a young, tech savvy individual, but the two times that I have attempted to turn it on have not gone well. On my iPhone, it always says follow up required and that I need to enter my trusted verification code on another apple device, which I have done countless times and then it says completed, but the message will never go away on my phone and it notifies me like every 5 minutes. I
I've restarted, updated, the like, but to no avail. I just turned it off for fear that I will lose iCloud access in an emergency. Does anyone else have issues with it?

 

[fhall1]

Strangely enough, I got an automated call this morning, asking me to call a number (which they claim it's Apple's customer service). I think this might be real deal. I called Apple to make sure this wasn't the real Apple. But I'm kind of worried that someone knows my number and knows that I have an iPhone

A lucky coincidence for them.....they try thousands of numbers, odds are they'll get lucky once in a while. They keep calling my parents telling them their computer is infected and sending personal data over the internet.......except they don't have, and never have had, any computer.

 

[nt5672]

Someone screwed up the reporting. We all know that all hacker news in the mass media these days involves Russian hackers, not Turkish.

 

[doctor-don]

Yes. To me, this is the give-away. They clearly picked an amount that is high enough for them to justify faking it all, but low enough to be a mere nuisance to Apple. If they were serious, they would be asking for millions.

It's still high enough to be a FELONY.

OFF WITH THEIR HEADS!

 

[tob!]

I received this just yesterday:

Your АppIe ID was logged into from a new browser.

lР address: 90.79.86.181 ( Paris, FRANCE )
Вrowser: Chrome on Windows 10.1

For your pro.tection, your АppIe ID is auto.matically lock.ed.

If you have not si.gned in to АppIe ID recently and believe some.one may have acc.essed your acc.ount, go to ( https://apρIeid.αррIe.com/Verify ) and ver.ify your acc.ount.

Sincerely,

АppIe Sup.port

Don't put your login in there! If you've done so change your password immediately.

This is a phishing attempt. Notice the url does not spell out APP*L*E but APP*I*L.

 

[macduke]

Apple has bounties for hundreds of thousands of dollars for the most serious security vulnerabilities. If this was real, why didn't they just submit through that and get more money? Because this is fake. There is nothing to worry about.

If anything, they are probably behind the increase in fake spam emails from Apple that my wife and I have been getting. If so, they were able to phish some data and—at most—have account info for maybe a few thousand of the dumbest people in the world.

 

[csurfr]

Here is my only issue with two step authentication:

When I sign in to the browser on my iMac, I get the "pop up" on my iMac asking if I want to allow it. So in essence Apple is sending the code to the same machine that requested the code. Doesn't this defeat the purpose?

 

[tob!]

Here is my only issue with two step authentication:

When I sign in to the browser on my iMac, I get the "pop up" on my iMac asking if I want to allow it. So in essence Apple is sending the code to the same machine that requested the code. Doesn't this defeat the purpose?

Not really. It prevents remote attacks. The point is that you have to have physical access to the authenticated device in order to authenticate more devices. So if an attacker compromises your login he can't do anything because he needs your hardware as well.
If an attacker gains physical access to your hardware it's game over anyway.

 

[csurfr]

Not Really, it prevents remote attacks. The point is that you have to have physical access to the authenticated device in order to authenticate more devices. So if an attacker compromises your login he can't do anything because he needs your hardware as well.
If an attacker gains physical access to your hardware it's game over anyway.

What I mean is, if I go sign on to another random machine, it won't get the same pop up showing the same code request and "allow" ? Because it has always done it so far.

 

[tob!]

What I mean is, if I go sign on to another random machine, it won't get the same pop up showing the same code request and "allow" ? Because it has always done it so far.

Why would you sign on to random machines? And even if you do so - why wouldn't you logout when you are done?