Apple Allowed Hacker Access to User's iCloud Account

A social engineering ploy allowed a hacker to wipe a journalist's iPhone, iPad and MacBook, as well as to gain access to his Gmail and Twitter accounts.

Forbes: Over the weekend, a hacker gained access to journalist Mat Honan’s iCloud account and proceeded to wipe his iPhone, iPad and MacBook. They also deleted his Gmail account and took over his Twitter account, which also linked to Gizmodo's Twitter account. Originally Honan assumed the hacker stole or broke his password, but that wasn't the case. "I know how it was done now," Honan blogged. "Confirmed with both the hacker and Apple. It wasn’t password related. They got in via Apple tech support and some clever social engineering that let them bypass security questions."

The incident highlights the fact that end users are depending on the good sense of tech company employees to protect them--and sometimes that system doesn't work out so well. The Forbes article notes, "Nothing can protect you from this kind of targeted attack. You ca[n] have the best password possible, and awesome security questions, but if the hacker can convince the tech support person that they are you, they can walk past all that security."

Tags: cloud computing, security, iPhone, iPad, Apple, Gmail, hacker, MacBook, hack attacks, iCloud

0 Comments (click to add your comment)
Comment and Contribute


(Maximum characters: 1200). You have characters left.