• Cryptocurrency
  • Earnings
  • Enterprise
  • About TechBooky
  • Submit Article
  • Advertise Here
  • Contact Us
TechBooky
  • African
  • AI
  • Metaverse
  • Gadgets
Generic selectors
Exact matches only
Search in title
Search in content
Post Type Selectors
  • African
  • AI
  • Metaverse
  • Gadgets
Generic selectors
Exact matches only
Search in title
Search in content
Post Type Selectors
TechBooky
Generic selectors
Exact matches only
Search in title
Search in content
Post Type Selectors
Home Service news

Naked celebrity hack: security experts focus on iCloud backup theory

Paul Balo by Paul Balo
September 2, 2014
in Service news
Share on FacebookShare on Twitter

Security experts are warning that there could be many more compromised celebrity iCloud accounts after examining file data from pictures stolen from stars including Jennifer Lawrence and Kate Upton.

One theory gaining ground is that many of the pictures had been accumulated by one hacker over a period of time – and were then “popped” by another hacker who somehow broke into a machine belonging to the first. Lending weight to that was that one of the earliest photos found in a cache released online dated to December 2011, while the most recent was from 14 August.

Some have also pointed to the presence of a Dropbox tutorial file in one hacked account as suggesting that the third-party cloud storage service was a source of some pictures.

But the posting to Github of an exploit against Apple’s Find My iPhone service three days ago, which could use a “brute-force” attack to work out a password, points to the existence of weak links in Apple’s service that could have been exploited once somebody had the email address of a celebrity or their manager.

The original hack looks to have been done by “chaining” between accounts: on gaining access to one person’s account, the hacker could access their address book and use that to attack others’.

InfoSec Taylor Swift, a Twitter account that began as a parody combination of the country singer and security thinking, began a serious examination of EXIF data connected to some of the photos distributed online. EXIF data can give extra detail about a photograph, such as when it was taken, with what device, and where.

“Swift” put the EXIF data – though not the images – from the alleged Kate Upton pictures onto the code-pasting site Pastebin – and found that they appeared to have come from her boyfriend, not Upton herself.

Apple has still issued no statement on how many accounts on its iCloud service were broken into.

But it has come in for strong criticism over the lack of protection against “brute-force” attacks that would yield a password. “If the celebs’ iCloud account passwords were brute forced, the problem seems to be lack of rate limiting by Apple, not lack of crypto,” commented Christopher Soghoian, principal technology at the American Civil Liberties Union.

“Once Apple’s privacy and PR teams respond to the celeb iCloud fiasco, I hope Apple donates several million dollars to usable security research… Blame the tech companies for delivering products with crappy default security settings, not the non-expert users whose accounts are hacked.”

Some have suggested that the source of some of the photos could even be staff with the ability to access iCloud backups. However Apple says in its support documents that iCloud backups – including photographs – are encrypted: “This means that your data is protected from unauthorised access both while it is being transmitted to your devices and when it is stored in the cloud.”

Dan Kaminsky, chief scientist at whiteops.com, said on Twitter that “my personal thinking is that someone [originally] hacked desktops, and someone else hacked the hacker” – adding “if it isn’t iCloud, which apparently there’s some reason to believe.”

There is widespread confusion though about the implications of the hack. Swift warned that “_This is just the beginning._ Folders of images with thumbnails visible have been shown, many celebs yet to be impacted who will.”

source:  Charles Arthur/The Guardian

Related Posts:

  • Screenshot_2022_11_16_at_15.38.46
    Apple Makes iCloud.com Look Like An iPad Home Screen
  • QmSknQ5xfDXDm3B3UaKJiq7iZgZgKEbGMQpCkdm1JHgeDx
    Binance Halts Withdrawals On Its Platform Following…
  • apple-reuters-image-163135177316×9
    Apple Is Introducing End-To-End Encryption To iCloud Backups
  • 01-facebook-spaces-still-shot
    Ankr Confirms Multi-Million Dollar Hack
  • CBN-1
    4.8 Million Nigerians Were Registered For BVNs In…
  • quick-guide-to-transfer-google-contacts-to-icloud
    Quick Guide To Transfer Google Contacts To iCloud
  • 49184-96027-48626-94953-48553-94770-48333-94358-iPhone-14-Pro-cutout-xl-xl-xl-xl
    iOS 16.2 Arrives With Improved Data Protection And Updates
  • how-to-export-imap-to-pst-file-format-in-simple-steps (2)
    How To Export IMAP To PST File Format In Simple Steps

Discover more from TechBooky

Subscribe to get the latest posts sent to your email.

Tags: facebookfacebook appnigerian techNigerianTechstart up
Paul Balo

Paul Balo

Paul Balo is the founder of TechBooky and a highly skilled wireless communications professional with a strong background in cloud computing, offering extensive experience in designing, implementing, and managing wireless communication systems.

BROWSE BY CATEGORIES

Select Category

    Receive top tech news directly in your inbox

    subscription from
    Loading

    Freshly Squeezed

    • Tech Hype vs. Reality – When Big Tech Missed the Mark Pt. 3 May 11, 2025
    • Google’s Antitrust Showdown, AI vs. Search, and other Headlines May 11, 2025
    • Huawei Officially Launches HarmonyOS for PC May 10, 2025
    • Canada Nears Launch of Instant Payment Technology May 10, 2025
    • Threads Adds Dashboard for Post & Account Limits May 10, 2025
    • Many X Users are Experiencing Timeline Update Issues May 10, 2025

    Browse Archives

    May 2025
    MTWTFSS
     1234
    567891011
    12131415161718
    19202122232425
    262728293031 
    « Apr    

    Popular Tags

    africa (135) AI (497) android (367) app (717) Apple (577) artificial intelligence (419) business (482) china (132) cryptocurrency (210) ecommerce (122) enterprise (287) facebook (507) fintech (244) funding (121) gadget (558) gaming (201) google (710) government (469) instagram (173) internet (467) ios (291) iphone (246) meta (116) microsoft (369) mobile (352) new feature (384) nigeria (440) privacy (158) research (140) samsung (185) security (421) smartphone (277) social media (836) software (509) startup (419) streaming (174) telecom (242) tips (372) twitter (289) united states (216) users (158) videos (127) website (173) whatsapp (201) youtube (138)

    Quick Links

    • About TechBooky
    • Advertise Here
    • Contact us
    • Submit Article
    • Privacy Policy

    About Us

    TechBooky

    TechBooky is a social Tech blog with a special focus on the budding African Technology sector. TechBooky is currently based in Abuja, Nigeria.

    Recent News

    Tech Hype vs. Reality – When Big Tech Missed the Mark Pt. 1

    Tech Hype vs. Reality – When Big Tech Missed the Mark Pt. 3

    May 11, 2025
    Google’s Antitrust Showdown, AI vs. Search, and other Headlines

    Google’s Antitrust Showdown, AI vs. Search, and other Headlines

    May 11, 2025
    Huawei Officially Launches HarmonyOS for PC

    Huawei Officially Launches HarmonyOS for PC

    May 10, 2025
    Canada Nears Launch of Instant Payment Technology

    Canada Nears Launch of Instant Payment Technology

    May 10, 2025
    Advertisement Coming to Threads from Next Year

    Threads Adds Dashboard for Post & Account Limits

    May 10, 2025
    Many X Users are Experiencing Timeline Update Issues

    Many X Users are Experiencing Timeline Update Issues

    May 10, 2025
    • Login

    © 2021 Design By Tech Booky Elite

    Generic selectors
    Exact matches only
    Search in title
    Search in content
    Post Type Selectors
    • African
    • Artificial Intelligence
    • Gadgets
    • Metaverse
    • Tips
    • About TechBooky
    • Advertise Here
    • Submit Article
    • Contact us

    © 2021 Design By Tech Booky Elite

    Discover more from TechBooky

    Subscribe now to keep reading and get access to the full archive.

    Continue reading

    We use cookies to ensure that we give you the best experience on our website. If you continue to use this site we will assume that you are happy with it.Ok