If you’re an Apple developer, then you might have noticed that Apple’s Developer Center is offline. It appears that the site was hacked by independent security researcher Ibrahim Balic and after he informed Apple of how he hacked it, the site was taken down by Apple. Presumably to fix the issues that he found. The Next Web has all the details including what Apple said:
A press statement from Apple said that ‘an intruder’ attempted to secure personal information about registered developers from the site, but the company provided no further details about the incident. While it confirmed a server holding payments details was unaffected, the company did not confirm if user data had leaked out.
Lovely, but Balic has said something that is different than what Apple said:
UK-based Ibrahim Balic claims that his recent research on Apple saw him unearth 13 bugs from its system, highlighting a hole that could leave data from the Developer Center exposed. Balic claims he showed Apple 73 user accounts from its own workers to illustrate the flaw when he contacted the company to help them fix it. Though he admits he managed to get hold of data from more than 100,000 users, he maintains he did not hack the system for malicious purposes.
Balic suggests that, despite his intention to help the company, Apple viewed his access as a security breach and promptly shut down the Developer Center on Thursday. The firm did not provide an explanation until Sunday.
That implies that this is more serious than Apple implies. Now as I type this, the site is still down and there’s no word on an ETA to restore the site at this time. Also, we’re unlikely to get a full explanation from Apple as to what really happened. Thus anyone who uses the site will likely wonder how secure their personal information is.
Related
This entry was posted on July 22, 2013 at 1:46 pm and is filed under Commentary with tags Apple, Hacked. You can follow any responses to this entry through the RSS 2.0 feed.
You can leave a response, or trackback from your own site.
Apple Shuts Down Developer Site After Hack
If you’re an Apple developer, then you might have noticed that Apple’s Developer Center is offline. It appears that the site was hacked by independent security researcher Ibrahim Balic and after he informed Apple of how he hacked it, the site was taken down by Apple. Presumably to fix the issues that he found. The Next Web has all the details including what Apple said:
A press statement from Apple said that ‘an intruder’ attempted to secure personal information about registered developers from the site, but the company provided no further details about the incident. While it confirmed a server holding payments details was unaffected, the company did not confirm if user data had leaked out.
Lovely, but Balic has said something that is different than what Apple said:
UK-based Ibrahim Balic claims that his recent research on Apple saw him unearth 13 bugs from its system, highlighting a hole that could leave data from the Developer Center exposed. Balic claims he showed Apple 73 user accounts from its own workers to illustrate the flaw when he contacted the company to help them fix it. Though he admits he managed to get hold of data from more than 100,000 users, he maintains he did not hack the system for malicious purposes.
Balic suggests that, despite his intention to help the company, Apple viewed his access as a security breach and promptly shut down the Developer Center on Thursday. The firm did not provide an explanation until Sunday.
That implies that this is more serious than Apple implies. Now as I type this, the site is still down and there’s no word on an ETA to restore the site at this time. Also, we’re unlikely to get a full explanation from Apple as to what really happened. Thus anyone who uses the site will likely wonder how secure their personal information is.
Share this:
Like this:
Related
This entry was posted on July 22, 2013 at 1:46 pm and is filed under Commentary with tags Apple, Hacked. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.