Apple issues security warning for iCloud following reports of hacks in China

Apple iCloud

Apple investigation says that hackers had gained users’ passwords through so-called phishing attacks

On Tuesday, Apple posted a new security warning for users of its iCloud online storage service amid reports of a determined effort to intercept customer information and other data from people who use the service in China.

“We’re aware of intermittent organized network attacks using insecure certificates to obtain user information, and we take this very seriously,” the computer-maker said in a post Tuesday on its support website. The post said Apple’s own cloud computing platform has not been breached.

Apple’s post did not specifically mention China or provide any details on the attacks but advised customers accessing the service to always verify that they’ve connected to an authentic iCloud website through a trusted browser.

Using what is technically known as a man-in-the-middle (MITM) attack, in which the hackers interposed their own website between users and Apple’s iCloud server to copy and steal passwords, iMessages, photos and contacts that users enter when they think they are signing into Apple’s service.

Greatfire.org, which conducts research on Chinese internet censorship, alleged that the Chinese government was behind the attack because they are hosted from servers to which only the government and state-run telecommunications companies have access. They are also similar to previous attacks on Google Inc, Yahoo Inc and Microsoft Corp’s Hotmail. But a spokeswoman with the Chinese Foreign Ministry said the country opposed any form of hacking.

Cupertino, California based Apple said in its post that the breach has not affected its users who sign into iCloud from their iPads or iPhones or on Mac computers while using the latest Mac operating system and Apple’s Safari browser. But the company’s support document goes on to stress the significance of digital certificates, advising that users who see an invalid certificate warning in their browser while visiting iCloud.com should not proceed further. Apple suggested users to make certain that a green lock symbol is perceptible in Safari and that the message safari is using an encrypted connection to www.icloud.com is shown when the lock symbol is clicked. Apple also has verification instructions for both Chrome and Firefox.

“If users get an invalid certificate warning in their browser while visiting www.icloud.com , they should pay attention to the warning and not proceed,” Apple said in the post.

Apple investigation says that hackers had gained users’ passwords through so-called phishing attacks or simply by guessing the answers to security questions that allowed access. The company said its servers were not compromised in that case.

Anna Domanska
Anna Domanska is an Industry Leaders Magazine author possessing wide-range of knowledge for Business News. She is an avid reader and writer of Business and CEO Magazines and a rigorous follower of Business Leaders.

Recent Posts

Strong iPhone 12 sales could boost Apple’s Q3 2021 earnings

Strong iPhone 12 sales could boost Apple’s Q3 2021 earnings

Will Apple manage to post solid earnings in Q3 2021? Here’s what Wall Street’s top analysts have to say ahead of Apple’s Q3 2021 earnings report today.
7 hours ago
Tesla earnings top $1 billion for the first time

Tesla earnings top $1 billion for the first time

Tesla earnings not only blew past analyst expectations but also marked the first time the automaker’s quarterly profit joined the three-comma club.
9 hours ago
Elon Musk tweet pushes Dogecoin prices up again

Elon Musk tweet pushes Dogecoin prices up again

Dogecoin was launched as a joke in 2013. The cryptocurrency is up a staggering 6,000% compared to last year’s prices due to wild speculations.
9 hours ago
Amazon to hire a crypto lead, may soon accept payments in cryptocurrency

Amazon to hire a crypto lead, may soon accept payments in cryptocurrency

The product lead will develop the full marketing strategy from customer experience to technical development to launching it.
1 day ago
Billionaire CEO Elon Musk Shares the Brutal Truth about Life as an Entrepreneur

Billionaire CEO Elon Musk Shares the Brutal Truth about Life as an Entrepreneur

“I would say I’ve had some pretty tough life experiences and Tesla’s probably responsible for two-thirds of all personal and professional pain combined, to give you a sense o
3 days ago
AT&T, Airbnb & UPS among firms to face Akamai’s global outage

AT&T, Airbnb & UPS among firms to face Akamai’s global outage

Global outage causes Akamai Technologies to re-think cyber securities.
4 days ago