The largest Apple iCloud raid in history has seen nearly a quarter of a million accounts compromised by malware targeting app pirates.
The hack spree, affecting at least 225,000 valid Apple cloud accounts, is hitting jailbroken iThings – devices that have had Cupertino's strict device security controls bypassed and disabled.
I have to be up front and tell you the truth. Being British, I don't know who Kris Jenner is.
Indeed, I have to admit that I thought the Kardashians were aliens in Star Trek.
An alleged bug in iOS 8 appears to be deleting documents stored in iCloud Drive without the user's permission.
Discovered by MacRumors after complaints surfaced from users of the blog site's forums, the bug is triggered by the option to Reset All Settings.
Three weeks ago hundreds of nude celebrity photos were leaked onto the internet. Dubbed The Fappening, the collection included pictures of Jennifer Lawrence, Kate Upton, Mary Elizabeth Winstead, Jessica Brown Findlay, and Kaley Cuoco, with the majority of the personal images apparently obtained from hacked iCloud accounts.
The hacking of celebrity accounts and the theft of explicit photos of a number of female stars has become even more serious, with word that at least one of the women was underage when the leaked pictures were taken. Several sites hosting the photos - which have already prompted an official statement from Apple early today, about the role iCloud played in their theft - have been notified that, in some shots, Olympic gymnast McKayla Maroney was under the age of 18.
L33tdawg: Hate to say we told you so, but well, Vladimir Katalov did - last year at that! Take a look at his presentation slides (PDF) if you haven't already
Apple said Monday it is "actively investigating" whether a security breach at its iCloud service was responsible for the leak of several private, nude images of celebrities, including actress Jennifer Lawrence.
"We take user privacy very seriously and are actively investigating this report," Apple spokeswoman Natalie Kerris told Recode. CNET has contacted Apple for comment and will update this report when we learn more.
Apple on Monday appears to have rolled out a new implementation of its two-factor Apple ID authentication system with iCloud.com, requiring users who have the additional layer of security enabled to enter a special code before accessing the Web apps.
With the new implementation, shown in the screenshot above, Apple is expanding its two-step authentication security feature beyond Apple ID management and iCloud-connected features to the iCloud.com Web app suite. Prior to the change, iCloud.com was accessible via a simple password. The feature was first spotted by reader Stephan.
In the latest versions of OS X and iOS, Apple's new iCloud Keychain provides one of the most important pieces of functionality for security-conscious users: a password manager.
Unfortunately, it's kind of a mess. iCloud Keychain does accomplish the most basic things you'd expect a password manager to do, but it often does so in an awkward manner. Important functionality is hard enough to find that it may be effectively hidden from the average user, particularly on iPhones and iPads.
Russian security researcher Vladimir Katalov analyzed Apple's secretive iCloud and Find My Phone protocols to discover that neither are protected by two-factor authentication, and iCloud data can be downloaded remotely without a user ever knowing.
