China-backed hackers may have infiltrated Apple’s iCloud: blog
Unknown hackers interposed their own website between users and Apple’s iCloud server
Apple Inc’s iCloud storage and backup service in China was attacked by hackers trying to steal user credentials, a Chinese web monitoring group said, adding that it believes the country’s government is behind the campaign.
Using a method called a “man-in-the-middle” (MITM) attack, unknown hackers interposed their own website between users and Apple’s iCloud server, intercepting data and potentially gaining access to passwords, iMessages, photos and contacts, Greatfire.org wrote in its blog post.
Greatfire.org, a group that conducts research on Chinese Internet censorship, alleged government involvement in the attack, saying it resembled previous attacks on Google Inc, Yahoo Inc and Microsoft Corp’s Hotmail.
Two independent security experts contacted by Reuters said Greatfire’s report appeared credible.
“All the evidence I’ve seen would support that this is a real attack,” said Mikko Hypponnen, chief research officer at security software developer F-Secure. “The Chinese government is directly attacking Chinese users of Apple’s products.”
The attack comes several weeks after Apple said it would begin storing iCloud data for Chinese users on China Telecom servers. It also coincided with the start of iPhone 6 sales in China, which began Friday after weeks of talks between China and Apple over what the government said were cybersecurity concerns.
Greatfire.org said the attack most likely could not have been staged without the knowledge of Internet providers like China Telecom, given they appeared to originate from “deep within the Chinese domestic Internet backbone”.
But the group said the attack may not be linked to Apple’s recent decision to store user data on China Telecom servers.
“The previous MITM attacks all showed the same characteristics as this one,” Greatfire.org co-founder Charlie Smith said by email. “Apple did not need to be doing anything with China Telecom for this attack to happen, i.e. the authorities did not need that relationship to stage an attack like this one.”
It was unclear if the hackers were still active. Apple did not have an immediate comment when contacted. China Telecom did not immediately respond to comment.
Apple said at the time the move to China Telecom was made to improve the speed of service for Chinese servers and flatly denied the possibility that it would expose user data.
The United States and Western companies have accused Chinese-backed hackers of infiltrating government and corporate websites and services. But Beijing has repeatedly denied its involvement in such attacks.
The Chinese embassy was not immediately available for comment.
British govt to request information from web giants on extremistsDowning Street policy chiefs are scheduled to meet with Google, Facebook, Twitter and Microsoft Digital
FBI head criticizes Apple, Google over data encryptionGoogle and Apple this month announced they are hardening encryption tactics Digital
Facebook, Apple finance female employees’ ‘egg freezing’Should the female employees in one of these companies wish to freeze her eggs, the new policy will cover the costs Variety
Apple Pay reportedly set for U.S. launch this weekThe memo, posted by tech-news website MacRumors, scheduled the introduction of the new payment system for Oct. 18 Technology
Hairgate: iPhone users report painful problemSeveral users of California-based tech giant Apple’s bestselling device have complained that their hair is getting caught in it Variety
Apple stock falls amid new iPhone glitchesThe stock decline led a broader decline in technology shares Technology
Facebook’s ‘Safety Check’ feature tells friends if you are safeOnce activated, and if one happens to be in an affected area, Facebook would send a notification asking if the user is safe Media