Security Market Segment LS
Thursday, 23 March 2017 10:44

Hackers seek ransom from Apple for iCloud accounts Featured

By
Hackers seek ransom from Apple for iCloud accounts

A hacker or group of hackers is threatening to reset a cache of millions of iCloud accounts and remotely wipe Apple devices, unless Apple pays US$75,000 in Bitcoin or Ethereum or US$100,000 worth of iTunes gift cards before 7 April.

The Turkish Crime Family said it would delete the data in the event that the ransom was paid.

A report in Motherboard said the group had shown its reporter screenshots of what were claimed to be emails between the group and Apple's security team.

The website also said it had been given access to an email account that was allegedly used to communicate with Apple.
Within that account, one email, apparently from an unnamed member of Apple's security team, said: "Are you willing to share a sample of the data set?"

This communication took place about mid-March. Motherboard said the email headers showed the return-path was to an address with the @apple.com domain.

A video of the hackers opening some of the alleged stolen accounts was uploaded to YouTube, the report said, with footage of what was said to be a log-in into an elderly woman's iCloud account. That video does not appear to be available anymore.

The website said it had also seen a screenshot of another message from Apple security, which read: "We firstly kindly request you to remove the video that you have uploaded on your YouTube channel as it's seeking unwanted attention, second of all we would like you to know that we do not reward cyber criminals for breaking the law."

The email added that archived communications with the hackers would be sent to law enforcement authorities.

Varying claims have been made about the quantum of data that the hackers claim to have. One claim said they had access to more than 300 million Apple email accounts, with both @icloud and @me domains included.

But another claim said the number was 559 million.

Commenting on the imbroglio, Webroot senior threat research analyst Tyler Moffitt said: “This issue illustrates that no matter how reputable or confident a company is with their security policies, they are still vulnerable and at risk at all times.

"Unless there are adequate back-up policies in place, I have no doubt that the ransom will be paid, regardless of what Apple publicly claims."

He added that there was a good chance of this data eventually appearing on the dark net, no matter what the outcome.

David Dufour, senior director, Engineering and Cyber Security at the same company, had some advice for Apple users.

"First, if you still have access to your data, back it up to a DVD, USB or some other offline source," he said.

"Second, change your password. This should prevent the cyber criminals from gaining access to your account and deleting the data. This assumes they don't still have access to the backend systems."

Dufour said if a user could not access his or her account or data, they should contact Apple right away.

Read 3153 times

Please join our community here and become a VIP.

Subscribe to ITWIRE UPDATE Newsletter here
JOIN our iTWireTV our YouTube Community here
BACK TO LATEST NEWS here




IDC WHITE PAPER: The Business Value of Aiven Data Cloud Solutions

According to IDC, Aiven enables your teams to perform more efficiently, reduce direct infrastructure costs, and provide improved database performance, agility and scalability.

Find out how Aiven makes teams 48% more efficient, allowing staff to focus on high-value activities that drive real business results:

340% 3-year ROI – break even in 5 months (average)

37% lower 3-year cost of operations

78% reduction in staff time for database deployments

Download the IDC White Paper now

DOWNLOAD WHITE PAPER!

PROMOTE YOUR WEBINAR ON ITWIRE

It's all about Webinars.

Marketing budgets are now focused on Webinars combined with Lead Generation.

If you wish to promote a Webinar we recommend at least a 3 to 4 week campaign prior to your event.

The iTWire campaign will include extensive adverts on our News Site itwire.com and prominent Newsletter promotion https://itwire.com/itwire-update.html and Promotional News & Editorial. Plus a video interview of the key speaker on iTWire TV https://www.youtube.com/c/iTWireTV/videos which will be used in Promotional Posts on the iTWire Home Page.

Now we are coming out of Lockdown iTWire will be focussed to assisting with your webinars and campaigns and assistance via part payments and extended terms, a Webinar Business Booster Pack and other supportive programs. We can also create your adverts and written content plus coordinate your video interview.

We look forward to discussing your campaign goals with you. Please click the button below.

MORE INFO HERE!

BACK TO HOME PAGE
Published in Security
Tagged under
Sam Varghese

Sam Varghese has been writing for iTWire since 2006, a year after the site came into existence. For nearly a decade thereafter, he wrote mostly about free and open source software, based on his own use of this genre of software. Since May 2016, he has been writing across many areas of technology. He has been a journalist for nearly 40 years in India (Indian Express and Deccan Herald), the UAE (Khaleej Times) and Australia (Daily Commercial News (now defunct) and The Age). His personal blog is titled Irregular Expression.

Latest from Sam Varghese

Related items

More in this category: « Microsoft loses the Edge at hacking contest Windows flaw lets attackers take over A-V software »
Share News tips for the iTWire Journalists? Your tip will be anonymous
back to top

Subscribe to Newsletter

*  Enter the security code shown:

WEBINARS & EVENTS

CYBERSECURITY

PEOPLE MOVES

GUEST ARTICLES

Guest Opinion

ITWIRETV & INTERVIEWS

RESEARCH & CASE STUDIES

Channel News

Comments