Friendly forums for passionate Dems!
More than 91 million posts since 2001
Home Latest Greatest Videos Forums Hide ads Join up!
Home Latest Greatest
Videos Forums Help
Hide ads Join up!
Latest Discussions»Latest Breaking News»Apple iCloud security exp...
Welcome to DU! The truly grassroots left-of-center political community where regular people, not algorithms, drive the discussions and set the standards. Join the community: Create a free account Support DU (and get rid of ads!): Become a Star Member Latest Breaking News General Discussion The DU Lounge All Forums Issue Forums Culture Forums Alliance Forums Region Forums Support Forums Help & Search

Latest Breaking News

Related: General Discussion, Editorials & Other Articles

jakeXT

(10,575 posts) Wed Sep 3, 2014, 05:17 PM Sep 2014

Apple iCloud security exploit is a concern, experts say

Source: BBC

Apple's iCloud facility, which stores iPhone and iPad users' photos and personal data, has a "fundamental security flaw", an expert has warned.

The online service is under scrutiny after intimate images of celebrities were stolen and leaked.

It has emerged that a security measure called two-step verification, which is recommended by Apple, can be bypassed using easily available software that allows access to iCloud back-ups.

Apple declined to comment.

Read more: http://www.bbc.com/news/technology-29045789

InfoView thread info, including edit history TrashPut this thread in your Trash Can (My DU » Trash Can) BookmarkAdd this thread to your Bookmarks (My DU » Bookmarks) 12 replies, 1661 views
ShareGet links to this post and/or share on social media AlertAlert this post for a rule violation PowersThere are no powers you can use on this post EditCannot edit other people's posts ReplyReply to this post EditCannot edit other people's posts Rec (4) ReplyReply to this post
12 replies = new reply since forum marked as read
Highlight: NoneDon't highlight anything 5 newestHighlight 5 most recent replies
Apple iCloud security exploit is a concern, experts say (Original Post) jakeXT Sep 2014 OP
omg even APPLE??? Some du heads explode dembotoz Sep 2014 #1
This is clearly Google, and/or Microsoft's fault. AtheistCrusader Sep 2014 #3
One in particular... nt. Hosnon Sep 2014 #10
DU post with more on what the software can do... PoliticAverse Sep 2014 #2
my apple iphone has a weird default setting.It sends everything to the cloud, impossible to shut off Sunlei Sep 2014 #4
It's quite easy to turn off. RoccoR5955 Sep 2014 #5
I wonder if they will praise their new iOS unlimited picture backup feature jakeXT Sep 2014 #7
It's only as easy as your password for iCloud! RoccoR5955 Sep 2014 #9
Actually I believe it was an easy job RoccoR5955 Sep 2014 #6
Reminds me of Spaceballs :) kentauros Sep 2014 #8
It's remarkable that a potentially much greater vulneralbility hasn't been given visibility IDemo Sep 2014 #11
Nice Dad and it sounds like EPRB jakeXT Sep 2014 #12

Sunlei

(22,651 posts)
4. my apple iphone has a weird default setting.It sends everything to the cloud, impossible to shut off
Reply to jakeXT (Original post)
Wed Sep 3, 2014, 06:12 PM
Sep 2014

It's hard to get the settings off cellular and eats up my AT & T plan because Apple sends everything to the cloud. And then you get charged at cellular rates for the data. I shut off the 'cloud', shut off cellular and my useage still goes up! something when the phone sleeps it switches from wifi to cellular. I have to boot the phone off.

Something on the apps on the apple iphone keeps the apps turned on and sending data to their cloud. No wonder the cloud got "hacked". There are so many iphone apps, all connected to apples cloud!! and probably a bunch of apps easy to hack!!

I'm sorry I even got the apple iphone, it was a waste of a lot of money. I would never use it for any banking or payment transactions. I even disconnected it from my emails.

I would like a refund from Apple!! it's the least they can do.

TopBack to the top of the page AlertAlert this post for a rule violation ShareGet links to this post PowersThere are no powers you can use on this post
  EditCannot edit other people's posts RecommendRecommend this post ReplyReply to this post
 

RoccoR5955

(12,471 posts)
5. It's quite easy to turn off.
Reply to Sunlei (Reply #4)
Wed Sep 3, 2014, 11:38 PM
Sep 2014

Go to settings > Photos and Camera, and turn off My Photo Stream and Photo Sharing, if you want none of it in the cloud!
Then go to Videos and turn off "Show All Videos."
None of your pics or videos are in the cloud.

TopBack to the top of the page AlertAlert this post for a rule violation ShareGet links to this post PowersThere are no powers you can use on this post
  EditCannot edit other people's posts RecommendRecommend this post ReplyReply to this post

jakeXT

(10,575 posts)
7. I wonder if they will praise their new iOS unlimited picture backup feature
Reply to RoccoR5955 (Reply #5)
Thu Sep 4, 2014, 03:59 AM
Sep 2014
Apple won't acknowledge how vulnerable iCloud is, of course—not with new iPhones to unveil in exactly a week. And really, do you think the company that told us to hold our defective iPhones differently will admit your naked sexts are easy to steal? This is the house of arrogance that Steve Jobs built, and it's on the verge of releasing a new version of iOS that backs up not just your last 1,000 iPhone photos, but all of them, along with your digitized health data. This is the last company on Earth you should want feeling too proud to admit it fucked up

http://valleywag.gawker.com/icloud-isnt-safe-because-everyones-a-target-and-apple-1629660564
TopBack to the top of the page AlertAlert this post for a rule violation ShareGet links to this post PowersThere are no powers you can use on this post
  EditCannot edit other people's posts RecommendRecommend this post ReplyReply to this post
 

RoccoR5955

(12,471 posts)
9. It's only as easy as your password for iCloud!
Reply to jakeXT (Reply #7)
Thu Sep 4, 2014, 07:57 AM
Sep 2014

I hear this all the time. People blame poor security on their choosing poor passwords, then when you enforce a password policy that includes numbers, caps, and special characters, the same people complain that their passwords are too difficult to remember.

TopBack to the top of the page AlertAlert this post for a rule violation ShareGet links to this post PowersThere are no powers you can use on this post
  EditCannot edit other people's posts RecommendRecommend this post ReplyReply to this post
 

RoccoR5955

(12,471 posts)
6. Actually I believe it was an easy job
Reply to jakeXT (Original post)
Wed Sep 3, 2014, 11:39 PM
Sep 2014

I don't think that it was Apple's fault that these people had simple passwords.
From what I have read, they were in the list of the 500 most frequently used passwords.
The only fault of Apple, was not limiting the number of retries that one gets to log on to iCloud.

TopBack to the top of the page AlertAlert this post for a rule violation ShareGet links to this post PowersThere are no powers you can use on this post
  EditCannot edit other people's posts RecommendRecommend this post ReplyReply to this post

IDemo

(16,926 posts)
11. It's remarkable that a potentially much greater vulneralbility hasn't been given visibility
Reply to jakeXT (Original post)
Thu Sep 4, 2014, 09:42 AM
Sep 2014

Just another reason I will never, ever own an iDevice (or Android device, to calm the outrage of a few here).

http://www.democraticunderground.com/10025273004

TopBack to the top of the page AlertAlert this post for a rule violation ShareGet links to this post PowersThere are no powers you can use on this post
  EditCannot edit other people's posts RecommendRecommend this post ReplyReply to this post

jakeXT

(10,575 posts)
12. Nice Dad and it sounds like EPRB
Reply to IDemo (Reply #11)
Thu Sep 4, 2014, 11:46 AM
Sep 2014

Last edited Thu Sep 4, 2014, 12:20 PM - Edit history (1)

Zdziarski said the service that raises the most concern is known as com.apple.mobile.file_relay. It dishes out a staggering amount of data—including account data for e-mail, Twitter, iCloud, and other services, a full copy of the address book including deleted entries, the user cache folder, logs of geographic positions, and a complete dump of the user photo album—all without requiring a backup password to be entered.


...

He said he makes personal use of those features to keep tabs on his iPhone-using children.

"The forensic tools I've written for myself privately I use for parental monitoring where when I set the phone up I'll pair it with my desktop and then at any point in the future I can just easily scan the network, find my kids' devices and dump all their application data, see who they're talking to, and what their doing online," he explained. My kids have got to be the most miserable kids in the world with a forensics expert for a dad."

http://arstechnica.com/security/2014/07/undocumented-ios-functions-allow-monitoring-of-personal-data-expert-says/




TopBack to the top of the page AlertAlert this post for a rule violation ShareGet links to this post PowersThere are no powers you can use on this post
  EditCannot edit other people's posts RecommendRecommend this post ReplyReply to this post
Reply to this discussion
Latest Discussions»Latest Breaking News»Apple iCloud security exp...
Home | Latest Discussions | Greatest Discussions | Latest Videos | All Forums

About | Copyright | Privacy | Terms of service | Contact

In Memoriam

© 2001 - 2024 Democratic Underground, LLC. Thank you for visiting.