iCloud Leak: Safety and Security

Discussion in 'Apple Music, Apple Pay, iCloud, Apple Services' started by teknikal90, Aug 31, 2014.

Thread Status:
Not open for further replies.
  1. teknikal90 macrumors 68030

    teknikal90

    Joined:
    Jan 28, 2008
    Location:
    Vancouver, BC
    #1
    In light of the recent leak......

    Anyone have any ideas on how it happened? Is iCloud really just not safe at all???
    I have disabled photostream, since the very beginning - but is it really easy to gain unauthorized access on someone's iPhone photos???
     
  2. sdsvtdriver macrumors 65816

    Joined:
    Jul 31, 2008
    Location:
    Southern California
    #2
    $10 says these user's iCloud passwords were social engineered and/or phished.
     
  3. teknikal90 thread starter macrumors 68030

    teknikal90

    Joined:
    Jan 28, 2008
    Location:
    Vancouver, BC
    #3
    This whole photostreaming/syncing thing is a mess. Noone has any real grasp on what it can do and its limitations. It shouldn't be on by default.
    The average phone user doesn't need it, it just adds a layer of complexity and another security breach point.
     
  4. ThisIsNotMe macrumors 68000

    Joined:
    Aug 11, 2008
    #4
    Exactly. I am sure quite a few people will go off the rails about it but in reality it is not different than peoples Gmail accounts being phished.


    If you put it on the internet there is a chance it will get hacked. Period.
     
  5. teknikal90 thread starter macrumors 68030

    teknikal90

    Joined:
    Jan 28, 2008
    Location:
    Vancouver, BC
    #5
    the difference is that if it's in your gmail account, you had emailed it to there.
    With icloud, the uploading is automatic.
    For most, it's activated without them fully grasping what it does - quite different to the pressing of the 'send' button onto a gmail account.

    Regardless, it'll be interesting to see what Apple will do in response to this.
     
  6. Angriff macrumors member

    Joined:
    Dec 28, 2013
    #6
    This is what I came here to post. The media will run wild saying iCloud is insecure blah blah when in reality it's probably another case of people reusing the password they use for their important accounts like iCloud on all sorts of random sites and/or clicking phishing links in email or on sketchy websites.

    How likely is it that passwords were reset by secret question answers? It seems like an intrepid hacker could find out a lot of the answers to the typical secret questions when the person in question is a celebrity.
     
  7. jon3543 macrumors 6502

    Joined:
    Sep 13, 2010
    #7
    This.

    Secret questions are stupid, as are people who don't treat them like additional passwords, sequences of randomly generated characters.
     
  8. BasicGreatGuy Contributor

    BasicGreatGuy

    Joined:
    Sep 21, 2012
    Location:
    In the middle of several books.
    #8
    I think this is going to be a case of some user(s) not being careful while being on the internet with various products.
     
  9. dba415 macrumors 6502

    Joined:
    Jun 18, 2011
    #9
    It's not photo stream, it's iCloud backups. Once a user has access to iCloud backups he can get all the photos.
     
  10. Planey28 macrumors 6502

    Joined:
    Jul 10, 2010
    Location:
    Greater Birmingham, UK
    #10
    Nothing but news outlets attempting to stir up scare and confusion. It hasn't even been confirmed that iCloud was the source for the leaked photos.
     
  11. alent1234 macrumors 603

    Joined:
    Jun 19, 2009
    #11

    i'm sure someone is trying to hack your nude pics right now
     
  12. 556fmjoe macrumors 65816

    Joined:
    Apr 19, 2014
    #12
    It's not so much an iCloud problem as a cloud storage problem.

    All cloud storage is a security risk unless the data is encrypted locally on your computer before being uploaded. Anytime you store data in the clear on somebody else's computer that can be accessed over the internet by anyone with the password, you're asking for trouble. A bad password, a stolen password, a Heartbleed exploit, configuration error on the server, malicious employee, government request, data mining, etc. all expose your data.
     
  13. Nathan20 macrumors regular

    Joined:
    Jul 19, 2012
    #13
  14. Fabricman112 macrumors regular

    Fabricman112

    Joined:
    Apr 3, 2010
    #14
    not insinuating anything but...
    apple is a large company with many employees, if someone knew someone maybe someone could give an amount of $$ to someone, and maybe some pictures were cached somewhere... :eek:

    humans have shown to be the weakest link many times
     
  15. Weaselboy Moderator

    Weaselboy

    Staff Member

    Joined:
    Jan 23, 2005
    Location:
    California
    #15
    Saw this article today speculating it was a Python script used to execute a dictionary attack on iCloud passwords via a vulnerability in Find my Phone. Apple apparently patched the exploit early this morning.
     
  16. pickaxe macrumors 6502a

    Joined:
    Nov 29, 2012
    #16
    You just lost 10$.

    The passwords were found by a brute force attack.
     
  17. Erphern macrumors 6502

    Joined:
    Mar 6, 2013
    Location:
    UK
    #17
    It's not so much a cloud storage problem as it is being a dumbass and taking naked pictures of yourself and putting them on the Internet.

    Protip: Don't take pictures of your vagina!
     
  18. robjulo macrumors 6502a

    Joined:
    Jul 16, 2010
    #18
    Other than Apple just patched iCloud.

     
Thread Status:
Not open for further replies.

Share This Page