Recently discovered vulnerability in the iCloud service tells us, how weak their security is and a close one to us, can easily make a list of passwords of our iCloud account and able to hack it.
A hacking tool in the market released on the New Year’s Day, which is basically used to prove that any account was vulnerable to being hacked into.
This tool guesses users’ passwords, which give enough time to an attacker to access an iCloud account.
Pr0x13, the person who created the hacking tool, claimed that there was a “painfully obvious” flaw in Apple’s iCloud which could be used to bypass security systems like passwords, security questions, and even two-factor authentication (which is the security system using text messages that could have prevented the celebrity iCloud hack).
How it words (Detail)?
The tool iDict is a brute force attacker to the iCloud service which works by guessing a user’s password by running a long list of commonly used passwords until it hits for the original one.
Right Now, this brute force attacks have been blocked by the Apple service, but this disclosed a loop hole in the Apple iCloud service, which was might being used by hackers since years.
Immediately Apple acted upon to Shut Down the hacking tool to secure its users, as the Tool iDict released on New Year’s Day and according to its creators’ tweet on January 2: “people trying to use the service were causing iCloud accounts to be locked for security reasons, preventing hackers from gaining access.”
Last year, there was a iCloud hack happened in which various famous celebrities like Jennifer Lawrence and Kate Upton’s naked photographs were leaked online and it raised a big question on the iCloud security, as Apple only famous for its security, and every 2nd person now-a-days have an Apple product or He/She wish to have it.
After the last year hack, Apple CEO Tim Cook gave an explanation on this and promised to increase the security of its service by adding alerts and improving two-factor authentication.