|
|
Australian Apple device owners witness products held ransom
|
|
|
|
MacNN Staff
Join Date: Jul 2012
Status:
Offline
|
|
A number of Australians are finding their iPhones, iPads, and/or Macs locked and held for ransom by one or more hackers, according to the Sydney Morning Herald and Apple's support forums. Victims are getting Find My Mac/iPhone notifications saying their devices have been hacked, and asking for a certain amount of money to be sent to a PayPal account before the hacker(s) will unlock them. A recurring name used in the attacks is "Oleg Pliss," but that's believed to be an alias.
People with passcodes enabled have reportedly been able to unlock their devices in spite of the ransom demands, but people without that security have fallen prey. Complicating matters further is that the PayPal account people are asked to send money to may not even be valid. In one instance, at least, a person was asked to send money to [email protected], but PayPal says that the email address isn't actually linked to a PayPal account, and is promising to refund money sent by anyone whose device is being held ransom.
iPhone owners that have contacted local carriers Optus, Telstra, and Vodafone have generally been asked to contact AppleCare instead. Conflicting messages have come out of Vodafone; one person says he was repeatedly told "iPhone can't be hacked," but officially the carrier says it hasn't received any support calls. A Telstra spokesman says he has referred complaints to Apple.
It's unclear how Apple ID accounts are being hacked, but one proposed theory is that recent data breaches at businesses other than Apple have allowed hackers to discover passwords some people are reusing with their Apple IDs. Two-factor identification can stop that sort of attack, but not everyone has it enabled. In the meantime, people with compromised accounts should be able to regain control by talking to Apple, after which they can set a new password.
(
Last edited by NewsPoster; May 27, 2014 at 11:56 AM.
)
|
|
|
|
|
|
|
|
|
Grizzled Veteran
Join Date: Nov 2006
Status:
Offline
|
|
These hackers are smart but zero common sense. I call these autistic hackers. Like those rampage killers, smart but mentally dangerous.
|
|
|
|
|
|
|
|
|
Mac Enthusiast
Join Date: Apr 2001
Location: Adelaide, Australia
Status:
Offline
|
|
Is the device really hacked or is it that the AppleID is hacked or compromised
If you know that someone has an iOS device and know their email address then you can probably phish for their password or even guess their password
Guessing an AppleID Password is simple for a percentage of iOS users if you learn a password that they used elsewhere (people are incredibly lazy about passwords and become attached to one or two passwords which they can remember and subsequently use everywhere)
Even after Heartbleed they are incredibly ignorant and complacent about password security
|
|
|
|
|
|
|
|
|
Grizzled Veteran
Join Date: Jun 2008
Status:
Offline
|
|
I highly doubt any of the actual devices that are receiving this message have been "hacked" or compromised.
More than likely, the "hackers," like SunSeeker said, have access to the Apple IDs and passwords of some people and are using the me.com "Find My iPhone" web app to activate "Lost Mode" (which restricts the device with a passcode and can display a custom, hacker-entered message) on the victim's devices.
|
|
|
|
|
|
|
|
|
Dedicated MacNNer
Join Date: Apr 2007
Status:
Offline
|
|
Hooray for password reuse. Makes things easier for everyone.
|
|
|
|
|
|
|
|
|
Forum Regular
Join Date: Apr 2011
Status:
Offline
|
|
iStuff getting hacked! Ha H a )
|
|
|
|
|
|
|
|
|
Senior User
Join Date: Jun 2000
Location: Sydney, Australia
Status:
Offline
|
|
Wonder what the common link is. Maybe a website or app that is local to Australia?
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
Forum Rules
|
|
|
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
|
HTML code is Off
|
|
|
|
|
|
|
|
|
|
|
|