Sidebar Sidebar
Become a MacRumors Supporter for $50/year with no ads, ability to filter front page stories, and private forums.

New Details Emerge on Security Researcher Potentially Responsible for Dev Center Outage

4TheLoveOfTech said:
He reports the vulnerability to Apple and gets no reply and Apple chooses to shut down the Developer Center and still hasn't contacted him.

SMH
Click to expand...

He started testing/submitting bugs to Apple on July 16, then on July 18 Balic reported the bug the same day users first started reporting downtime for Apple’s Dev Center.
 
kdarling said:
Apple, perhaps because of his report... or perhaps not, shut down their website shortly thereafter.
Click to expand...

A more likely scenario, they noticed the intrusion and shut it down immediately.

Its highly unlikely he gave them enough time to respond when it shows the same day or few days he submitted the bug report or even after to cover his butt.

Apple said nothing for days. Nor did he.
Click to expand...

Takes time for an investigation to see how much the website was compromised, who was responsible and if this so called security researcher was legitimate in his claims.

This scared him into going public, yet he STILL didn't give any details of how to do it.
Click to expand...

If that was really the case, which is very suspicious, it was his own doing. Hacking into websites for notoriety, new job prospects, CNN coverage, makes this very suspect.
 
Last edited:
This guy is definitely in over his head. His actions can be prosecuted, and ignorance of the law isn't a very good defense when you're talking about breaking into systems. He's also lucky he didn't stumble into any financial information systems while doing all this or he could be charged with another set of crimes. Going on CNN certainly isn't going to help any of this either.
 
chazwatson said:
This guy is definitely in over his head. His actions can be prosecuted, and ignorance of the law isn't a very good defense when you're talking about breaking into systems. He's also lucky he didn't stumble into any financial information systems while doing all this or he could be charged with another set of crimes. Going on CNN certainly isn't going to help any of this either.
Click to expand...

... lol, I can see someone else is over his head....

Apple should respond why they shut down their service. The fact that they are not indicates that they had an issue beyond Balic, and at this point I would guess that Balic's public disclosure made someone at Apple panic, particularly with the Quarterly Call coming up.

So now nobody at Apple is talking and everyone is covering their behinds.
 
macUser2007 said:
... lol, I can see someone else is over his head....

Apple should respond why they shut down their service. The fact that they are not indicates that they had an issue beyond Balic, and at this point I would guess that Balic's public disclosure made someone at Apple panic, particularly with the Quarterly Call coming up.

So now nobody at Apple is talking and everyone is covering their behinds.
Click to expand...
As far as security issues are concerned, no one will talk officially about the details until the issues are dealt with. A generic statement about the effects of the issue is usually made, and sometimes general updates are provided if deemed necessary, but that's about it until afterwards. It's pretty much a standard practice everywhere and make sense.
 
Not so happy

I have just finished our app "Happiness Trainer" and I can't upload it as I can't make the development profile.:(:(:(:(:confused::eek::apple:
 
You must log in or register to reply here.
Register on MacRumors! This sidebar will go away, and you'll see fewer ads.
Top Bottom
Back