Skip to main content

FBI and Apple look into massive celebrity iCloud photo hacking

Kate Upton
Both the FBI and Apple are looking into the alleged security breach of iCloud accounts belonging to celebrities that enabled hackers to nab private and in some cases highly personal photos and videos before posting them on image-based bulletin board 4chan.

The content apparently contains naked and semi-naked photos and videos of more than 100 A-list celebrities, among them Oscar-winning actress Jennifer Lawrence, singer Rihanna, swimsuit model Kate Upton, and TV star Kim Kardashian. While some of the celebrities argue that the pictures are frauds, others have confirmed that the posted photos of themselves are indeed authentic.

Related Videos

“Clicking on links to ‘naked celebrity’ photos would be a *very* bad idea right now.”

“The authorities have been contacted and will prosecute anyone who posts the stolen photos of Jennifer Lawrence,” said a spokesperson for the movie star

Although hackers named iCloud as the source of the content, Apple hasn’t yet confirmed whether this is the case. However, the tech company on Monday acknowledged the incident, with spokesperson Natalie Kerris saying “we take user privacy very seriously and are actively investigating this report.”

The FBI has also said it’s looking into the apparent security breach. In a statement issued Monday, the government agency said “the FBI is aware of the allegations concerning computer intrusions and the unlawful release of material involving high-profile individuals, and is addressing the matter. Any further comment would be inappropriate at this time.”

Related: Digital Trends’ guide to using iCloud

Some security experts have suggested that if iCloud is the sole source of the stolen content, then those affected were almost certainly not using two-factor authentication, a security process which adds another layer of protection to an account by asking for a security code, as well as the account’s password. Apple introduced the option of two-factor authentication 18 months ago.

However, other experts, including Rik Ferguson of security software firm Trend Micro, described a wide-scale hack of iCloud as “unlikely.” He also noted that hackers were likely to target websurfers seeking the racy images.

“For obvious reasons, clicking on links to ‘naked celebrity’ photos, or opening email attachments would be a *very* bad idea right now, expect criminals to ride this bandwagon immediately.”

At the time of writing, there appears to be no clear consensus among the online security community about exactly how the attack took place or where the images were taken from.

As we await further details regarding the precise nature of the hack, this could be a good time to evaluate the state of your own online security.  It you’re yet to activate two-factor authentication with online accounts where it’s offered, you might want to consider taking some time to do so.

Editors' Recommendations

How to turn a Live Photo into a video on your iPhone
Live Photo to video with hand holding iPhone.

Apple's Live Photos are photographs on steroids. When you shoot a Live Photo on your iPhone, it captures 1.5 seconds of video both before and after you tap the shutter. The result is not only your picture but also the scene enhanced by movement and sound as you tap and hold the image on your device. Live Photos debuted in 2015 alongside the iPhone 6S, and they are easy to create because the process is exactly the same as shooting any other kind of photo.

Read more
Apple’s iCloud encryption update hasn’t pleased everyone
iCloud storage on the iPhone 12 Pro Max

Apple's announcement this week that it’s boosting security for some iCloud data hasn't pleased everyone.

Advanced Data Protection for iCloud began rolling out to users on Thursday as an opt-in feature. It offers end-to-end encryption for iCloud backups, Photos, and Notes, though at this stage it doesn’t include iCloud Mail, Contacts, and Calendar.

Read more
What Apple’s iCloud encryption update really means — and why you should care
Apple advanced data protection.

Ask any tech enthusiast why they prefer Apple's ecosystem, and they will answer "security" as one of the key factors. Is Apple's security fortress really unbreachable? No. There are plenty of hacking incidents to prove it. Zero-day vulnerabilities pop up from time to time, and against sophisticated spyware like Pegasus, even Apple has proved to be clueless.

What Apple offers is a higher standard of protection, which also explains why the company has kept piling up on its ecosystem gatekeeping. For example, Apple doesn't allow sideloading and likely never will. It has its own set of tangible benefits. In 2022, Apple is further fortifying its security infrastructure with a trio of features.

Read more