Apple Developer Website Hacked Update #1

1202275-apple-hack-hacking-pirateUPDATE:  A couple days ago, the Apple Developer Website went down for extended maintenance.  Many suspected that the site might have been hacked, but with so much going on with both Mavericks and iOS 7 development, it really could have been anything.

As I pointed out on Monday 2013-07-22, the site was actually hacked, and personal information was compromised.  While Apple has stated that “sensitive personal information was encrypted and [could not] be accessed,” their network was still breached and information was compromised and/or stolen.

Interestingly enough, the person responsible for all of this has come out and identified himself. Ibrahim Balic admitted on TechCrunch that he is the “security researcher” who conducted the ad-hoc penetration testing on Apple’s Developer website.  He said he reported13 bugs, took 73 user details – all of them Apple employees – and gave them to the organization as an example of the exploit(s) he discovered.

Balic claims to have obtained more than 100,000 encrypted user details from the site.  In a posting on YouTube, Balic attempts to explain himself, promising to delete the data that he took, while informing Apple of the pen-tests prior to the actual data “theft.”

Please note that when I tried to view the video, it was marked “private” and it would not play.

Where this goes from here, I don’t know. Penetration testing is something that most every security firm does, and one that most large organizations want completed. However, they usually retain security firms to do this, and the testing is planned, sanctioned and paid for. Balic’s “testing” appears to have been none of these things; and he may find himself in a great deal of trouble.

This story is developing, and we’ll have further information as its made available. Please watch the Soft32 blog for additional updates.

Related Posts:

Stay in touch with Soft32

Soft32.com is a software free download website that provides:

121.218 programs and games that were downloaded 237.780.356 times by 402.775 members in our Soft32.com Community!

Get the latest software updates directly to your inbox