Apple says iCloud was not hacked during ‘ransomware’ attack


Apple says that iCloud was not hacked, following on from the news that a number of iOS and Mac users in Australia, New Zealand, Canada, and the U.S. report have had their devices remotely locked in exchange for ransom.

It’s been speculated that the hacking in question was done using login credentials gained from users as a result of recent data breaches and then used as Apple ID logins to lock users out via iCloud. While this may be the case, Apple says that it is not the result of the iCloud being compromised in any way.

Hacked users were targeted by 'Oleg Pliss' and advised to send $100 to a PayPal account to unlock their iOS devices.
Hacked users were targeted by ‘Oleg Pliss’ and advised to send $100 to a PayPal account to unlock their iOS devices.

In a statement, Apple notes that “it takes security very seriously and iCloud was not compromised during this incident.”

Affected users are advised to change their Apple ID passwords as soon as possible, and also to avoid using the same username and password for multiple services. Users who need additional help should contact AppleCare or visit their local Apple Retail Store, Apple says.

While Apple doesn’t say so in its statement, it is also highly recommended that iOS devices take advantage of Apple’s two-step verification process for Apple IDs, and passcode lock or Touch ID.

Users who have been targeted have found their Mac and iOS devices displaying a “ransomware” message claiming to have been hacked by “Oleg Pliss.” To unlock the devices they are asked to send money to a PayPal account.

Source: ZDNet

  • Sleaka J

    Should we be surprised by this? If iCloud was hacked there’d be tens of thousands of reports across the world, not mostly in Australia. There is clearly something else going on.

    I knew iCloud wasn’t hacked at all and to suggest it was, shows a complete lack of understanding. Someone with half a brain could figure out it wasn’t as simple as “iCloud got hacked”.

  • Beavix

    Too bad Apple’s two-step verification process is only available in 11 countries. Google and Microsoft are way ahead of Apple on this.