Hackers trick Apple into providing access to an iCloud account, chaos ensues

brit hacker stole staggering amount of data jailed for two years hackThis weekend played host to a twisting, turning tale of hacking woe, which captured headlines primarily because of some unpleasant tweets sent from the hacked Twitter account of tech blog Gizmodo. But at the heart of the story is something far more worrying — the deception of Apple tech support, and the subsequent access of an iCloud account.

While the story appears to start with the hacking of Gizmodo’s Twitter account, this was really a bonus for those hacking Mat Honan, a writer for Wired. Control of Gizmodo’s Twitter account was soon regained, but it was only the beginning of Honan’s problems.

Writing on his own blog, Honan describes how his iPhone, iPad and MacBook Air were systematically compromised and remote wiped using iCloud, and his Google account deleted too.

Because his Google account was linked to his Twitter account, which in turn was linked to Gizmodo’s Twitter — Honan had previously written for the site — offensive tweets were sent by the hackers. This is the point where the story went public.

Honan speculated that his iCloud account, where the problems all began, had been hacked using “brute force,” where someone systematically enters possible passwords until the correct one is discovered. However, this wasn’t the case, as both AppleCare and the hacker have said the account was breached using “social engineering.”

Trust gained using social engineering

In essence, social engineering involves a criminal lying about their identity and building trust to gain information from a third party, in this case AppleCare.

What’s interesting here is that no matter how secure you think your accounts are, or how strong your password is, it won’t matter if the person at the end of a telephone helpline is manipulated into handing it over to someone that’s not really you.

This will inevitably cause people to rethink how they use iCloud, and whether Apple’s security is good enough to protect all that important data. Before hands are thrown up in despair, Tony Bradley, writing for PCAdvisor.co.uk, has a very different story to tell concerning AppleCare. He describes a dogged refusal to handover any information at all, even with proof that he was who he said he was, indicating that either Honan’s experience is isolated, or that the criminals were really, really good.

Additionally, the attack will also — once again — highlight the importance of backing up data, encrypting data stored in the cloud, and taking care over linking online accounts together.

However, although these precautions may have limited Honan’s pain, they probably wouldn’t have prevented it happening in the first place. Infamous social engineer and hacker Kevin Mitnick said “If you want to protect your network, you cannot rely on technology alone,” and this applies here too.

Let’s see if Apple has a response to this hack, and whether it will also need to work to regain its customers trust, especially as it’s so close to providing iCloud email addresses.

Social Media

Tumblr promises it fixed a bug that left user data exposed

A bug on blogging site Tumblr left user data exposed. The company says that once it learned of the flaw, it acted quickly to fix it, adding that it's confident no data linked to its users' accounts was stolen.
Social Media

Over selfies and an onslaught of ads? Here's how delete your Instagram account

Despite its outstanding popularity and photo-sharing dominance, Instagram isn't for everyone. Thankfully, deleting your account is as easy as logging into the site and clicking a few buttons. Here's what you need to do.
Computing

How to protect your iCloud account

From Chinese hacking to identity theft, it's not surprising if you're a little worried about your iCloud data. Here's how to protect your iCloud account with a few simple security steps. It will only take a few minutes, and we'll walk you…
Computing

Was your Facebook account hacked in the latest breach? Here’s how to find out

Facebook now reports that its latest data breach affected only 30 million users, down from an initial estimate of 50 million accounts. You can also find out if hackers had accessed your account by visiting a dedicated portal.
Mobile

Got gadgets galore? Keep them charged up with the 10 best USB-C cables

If you weren't already aware, USB-C is quickly becoming mainstream. That's why we've rounded up some of the better USB-C cables on the market, whether you're looking to charge or sync your smartphone.
Mobile

Upcoming iPad may lose a few millimeters, along with its headphone jack

The new iPhone XS, iPhone XR, and Apple Watch aren't the last devices we'll see from Apple in 2018. There are plenty of rumors about a new iPad coming this year too, and it may share some design similarities with the new phones.
Mobile

Preapproval for iPhone Upgrade Program now available for iPhone XR

Apple took the wraps off of its new set of iPhones, including the iPhone XS, iPhone XS Max, and the new iPhone XR. The iPhone XR is being offered as the "affordable" iPhone, and it's a little different than the more expensive models.
Computing

Which is best: The Lenovo ThinkPad X1 Extreme or the 15-inch MacBook Pro?

To try and help nail down the best 15-inch laptops in the world, we compared the Lenovo ThinkPad X1 Extreme vs. MacBook Pro 15 in a head to head that looked at their power, design, and portability.
Mobile

Google Pixel 3 vs. Apple iPhone XS: Does Google’s A.I. take down Apple?

The Google Pixel 3 is here, boasting top-tier specs like a Qualcomm Snapdragon 845 and 4GB of RAM, and some of the world's best artificial intelligence features on a phone. But can it take out the Apple iPhone XS?
Mobile

Hinge's new feature wants to know who you've gone out on dates with

With its new "We Met" feature, Hinge wants to learn how your dates are going with matches in its app. That way, it can inject the information into its algorithm to provide future recommendations that better suit its users' preferences.
Mobile

Which Verizon plan is best for you? We check out family, individual, and prepaid

Verizon offers lots of plans for individuals, your family, and folks who want prepaid service. Here is everything you need to know about Verizon's plans, from data packages and smartphones to Big Red's prepaid plans.
Mobile

Safeguard your new Apple smartphone with one of our favorite iPhone XS cases

If the iPhone XS is your next phone, then you’ll want to shop for some proper protection now. That glass sandwich design is all too easy to scratch or crack, so make sure you snag one of the best iPhone XS cases to keep it looking good.
Mobile

Here are our favorite wireless phone chargers for Android devices and iPhones

We checked out the best wireless phone chargers to make tangles and uncooperative ports a thing of the past. Whether you have an iPhone or Android, find out which wireless charging pads are worth buying, and how their features compare.
Gaming

Apple Mac users should take a bite out of these awesome games

Contrary to popular belief, there exists a bevy of popular A-list games compatible for Mac computers. Take a look at our picks for the best Mac games available for Apple fans.