• Your favorite








    , and
  • Hackers Reportedly Use Activation Lock Vulnerability to Exploit iCloud

    “Team DoulCi”, are a group of hackers who claim they have figured out a way to execute a man in the middle attack. This allows them to unlock iOS devices that have security access on them with Activation Lock along with intercepting users’ Apple ID credentials. According to security researcher from SurfRight, Mark Loman, this attack is possible because Windows iTunes does not verify security certificates properly. This announcement was disclosed from Dutch technology website Tweakers.net recently.

    The attack was demonstrated by sharing screenshots of calls to Apple’s iCloud activation service by the group. Other similar success stories have also been shared recently on social media. The company has patched a vulnerability similar on iOS and OS X Apple devices, but Windows iTunes still remains susceptible. Loman thinks that the issue was either done on purpose or a beginner’s mistake.

    Users have been advised not to use iCloud services in public Wi-Fi locations until Apple finds a fix to the issue. Apple has also stated that users of the iPhone 3GS and the first generation iPad should have particular caution, because these devices cannot be patched over and can no longer receive software updates.

    Source: Tweakers.net
    This article was originally published in forum thread: Hackers Reportedly Use Activation Lock Vulnerability to Exploit iCloud started by Akshay Masand View original post