Apple iCloud users urged to change passwords


Thursday, 29 May, 2014

Apple iCloud users urged to change passwords

Owners of Apple devices are having their accounts blocked and are receiving ransom demands from hackers who appear to have compromised Apple’s iCloud security.

iPhone, iPad and Mac users in many Australian states have reported having their devices hacked followed by demands for a ransom to unlock the devices.

The problem appears to have also spread to the US in the last 24 hours.

The federal government’s Stay Smart Online website and the NSW Police have released warnings that suggest Apple users change their passwords as soon as possible. Stay Smart Online says that with the possibility that this attack is linked to the ‘Apple ID’, affected users are advised to change their Apple ID password as soon as possible. It also says that users not affected should also consider changing their Apple ID password as a precaution.

“At present, many users are reporting that their phones or systems lock unexpectedly, they receive an email from ‘Find My iPhone’ and a message on their screen stating that their device has been ‘Hacked by Oleg Pliss’,” says the Stay Smart Online alert. “The message said that to unlock their device they should pay a ransom via PayPal, emailing the payment code to lock404[a]hotmail.com.

“Reports by affected users suggest that this attack is possibly the result of hackers compromising the device owner’s Apple ID and using this to access their iCloud account. From their iCloud account a hacker can activate the device’s ‘Lost Mode’ and possibly reset the phone’s access code.”

Stay Smart Online says affected users should take the following steps:

  • Do not pay the ransom.
  • Change your password for your Apple ID. You can use your Apple ID to recover your device(s) if it has been locked by the hacker.
  • Switch off Lost Mode via iCloud.
  • If the hacker has set a new passcode lock on your device, you may be able to bypass this by using one of the methods suggested by Apple; however, you should note these involve either erasing, resetting or restoring your device from back up (if you have one).
  • Set up two-step verification for your Apple ID. Turning on two-step verification reduces the possibility of someone accessing or making unauthorised changes to your account information. Two-step verification requires both your password and a separate verification code sent to your phone (or other trusted device) in order to log in.
  • Affected users should contact Apple directly for more information. Apple has been able to help affected users recover their devices.
Related Articles

The problem with passwords is not what you think

When it comes to secure authentication, there seems to be a lesson we're not learning.

Secure-by-design software development for digital innovation

The rise of DevSecOps methodologies and developments in AI offers every business the opportunity...

Bolstering AI-powered cybersecurity in the face of increasing threats

The escalation of complex cyber risks is becoming a pressing issue for those in business...

Content from other channels on our network

Central Highlands Water chooses Infor for ERP

The benefits and risks of AI usage in the public sector

Cobalt Iron earns patent on analytics-based dynamic authorisation control

Shoalhaven City Council uses AI to deliver safer roads to the community

Smart technologies: helping councils improve community services and sustainability

When does a conductor not conduct?

Purdue-created tech makes 3D microscopes easier to use

Cracking the code on spin currents

Recyclable circuit board turns to jelly for disassembly

The potential of flexible thin-film electronics for chip design

Govt funds telco resilience tech, responds to LEOSat report

Extreme enclosure heli-lifted into an extreme environment

Cyber secured at critical network device level has never been more important

Cradlepoint 'Vehicle as a Node' is the Next Frontier for Emergency Services

Govt responds to post-incident review of Optus outage

  • All content Copyright © 2024 Westwick-Farrow Pty Ltd