Alert: Apple IDs have been hacked

Discussion in 'Apple iCloud' started by hitme64, Dec 7, 2015.

  1. raypin

    raypin PhilMUG Addict Member

    Joined:
    Jun 8, 2008
    Messages:
    12,945
    Likes Received:
    5,734
    ronnel0918, Theus and Sunil_K like this.
  2. lamski

    lamski PhilMUG Addict Member

    Joined:
    May 8, 2005
    Messages:
    2,643
    Likes Received:
    300
    Location:
    Makati, Philippines
    Getting the iCloud password AND the second factor is a bit puzzling as well. Perhaps the attacker has access to law-enforcement tools to bypass 2-factor authentication? Another possibility is they have physical access to the device where you receive the one-time passwords?
     
    hitme64 likes this.
  3. trigo

    trigo Well-Known Member

    Joined:
    Aug 10, 2007
    Messages:
    3,624
    Likes Received:
    69
    the two step verification is hard to crack... wonder how they did this..
     
    hitme64 likes this.
  4. GilGrissom

    GilGrissom Well-Known Member

    Joined:
    Apr 12, 2004
    Messages:
    948
    Likes Received:
    409
    Location:
    LALA Land
    Invest on a password manager. I have a 14 character password (76 bits of entropy) that I don't even try to remember which Lastpass has generated randomly. Paired with 2 factor authentication you should be relatively safe.
     
    trigo and hitme64 like this.
  5. hitme64

    hitme64 PhilMUG Addict Member

    Joined:
    Apr 2, 2007
    Messages:
    11,468
    Likes Received:
    10,439
    Location:
    Here
    actually i don't need a password manager per se, but thanks for the thought...i have to tell you no matter how tough that password is, someone or something will eventually break it...my own password was a 12-character, number and symbol combo that i had been using for quite sometime which i scramble every now and then and still it got compromised...i still have to investigate tho' how that TFA was bypassed in the first place

    there are ways to really hack these systems but am not at liberty to tell, shhh...

    for what it's worth, my Mac got disabled actually because of the number of tries the hacker tried to break it, not because he did...as for the apple id, it's been saved, password reset, details returned and all things considered, the balance has shifted...now that the IP has been traced and being tracked as of this moment...
     
    #25 hitme64, Dec 8, 2015
    Last edited: Dec 8, 2015
  6. bad_boy

    bad_boy Watching Your Language
    Staff Member

    Joined:
    Dec 21, 2007
    Messages:
    3,472
    Likes Received:
    32
    Location:
    Manila
    ^Hope you catch him (or at least make him sweat).
     
    hitme64 likes this.
  7. trigo

    trigo Well-Known Member

    Joined:
    Aug 10, 2007
    Messages:
    3,624
    Likes Received:
    69
    yup i hope you catch the one who did this..
     
    hitme64 likes this.
  8. loudsound

    loudsound Well-Known Member

    Joined:
    Jun 3, 2010
    Messages:
    1,234
    Likes Received:
    34
    Gender:
    Male
    Location:
    Laguna
    Wow, this is a really nasty hack :( I've been protective as well on my end with the use of a password manager, 2FA and VPN. I hope you get to use your Macbook again.
     
    hitme64 likes this.
  9. hitme64

    hitme64 PhilMUG Addict Member

    Joined:
    Apr 2, 2007
    Messages:
    11,468
    Likes Received:
    10,439
    Location:
    Here
    ^will give you all a shout-back when everything is well and done, i mean, with the MacBook (not the perp, but we'll get him now that we know where we did the hack)
     
  10. makintosh

    makintosh Active Member

    Joined:
    Dec 1, 2011
    Messages:
    409
    Likes Received:
    104
    Would be great also if you can post news once the perp is caught (bring out the pitchforks and torches!!! :mad:) and some details how he pulled the hack so others can have a better idea how to prevent the same from happening.
     
    #30 makintosh, Dec 9, 2015
    Last edited: Dec 9, 2015
  11. lamski

    lamski PhilMUG Addict Member

    Joined:
    May 8, 2005
    Messages:
    2,643
    Likes Received:
    300
    Location:
    Makati, Philippines
    Was the hacker local or abroad?
     
  12. hitme64

    hitme64 PhilMUG Addict Member

    Joined:
    Apr 2, 2007
    Messages:
    11,468
    Likes Received:
    10,439
    Location:
    Here
    ^local, but his IP travelled from Cebu to Cagayan de Oro to Pasig, so i guess he's from there...or she's, btw
     
  13. Juice

    Juice PhilMUG Addict Member
    Supporter

    Joined:
    May 31, 2009
    Messages:
    2,656
    Likes Received:
    1,148
    Is it possible to know how many apple IDs he was able to hack in to?
     
  14. hitme64

    hitme64 PhilMUG Addict Member

    Joined:
    Apr 2, 2007
    Messages:
    11,468
    Likes Received:
    10,439
    Location:
    Here
    i'm guessing this is happening now to a number of apple ids, because AS even acknowledged that there have been an increased number of reports of hacked accounts this past few days...

    so i guess now is the right TIME to reset your passwords before you get into the same predicament that i am in
     
  15. Juice

    Juice PhilMUG Addict Member
    Supporter

    Joined:
    May 31, 2009
    Messages:
    2,656
    Likes Received:
    1,148
    Thanks for that, I already reset my wife's apple ID. I really hope he gets caught.
     
    hitme64 likes this.
  16. Theus

    Theus PhilMUG Addict Member

    Joined:
    Sep 5, 2006
    Messages:
    4,767
    Likes Received:
    1,079
    Location:
    Antipolo / Las Pinas
    tsk. i'm more concerned about devices / macs getting locked than files being exposed (come to think of it, i don't have any sensitive files on iCloud). thanks to this thread, i finally made myself improve my password, from being 'weak' to 'strong' (using @raypin's link) & enable TFA (still have to wait another day though per apple). VPN, i've had for a while now.

    hope your mac gets fixed Rex.
     
    hitme64 likes this.
  17. view2darrel

    view2darrel Member

    Joined:
    Dec 12, 2010
    Messages:
    589
    Likes Received:
    1
    Location:
    Manila , Bulacan
    i received an email today,

    You recently initiated a process to reset your password or unlock your Apple ID. Click the link below to continue ....

    i did check the sender and its from apple. i have TFA enabled , i have random 15 to 20 characters long password (all my accounts) using 1password, i use VPN when accessing sensitive accounts (online banking, apple ID) , i dont login from other device, only on my mac and io's. thinking if i should create a seperate email for my apple id.
     
  18. raypin

    raypin PhilMUG Addict Member

    Joined:
    Jun 8, 2008
    Messages:
    12,945
    Likes Received:
    5,734
    mmm.......heeding my own advice, I've listed down all my email and other accounts: dear lord! I need 12 new, unique passwords with X strings each (using the recommended upper case/lower case, number and letter combo) plus 2 Factor authentication. Password creator used : https://identitysafe.norton.com/password-generator .
     
  19. hitme64

    hitme64 PhilMUG Addict Member

    Joined:
    Apr 2, 2007
    Messages:
    11,468
    Likes Received:
    10,439
    Location:
    Here
    ^yep, aren't we getting too paranoid now that we know we're actually unsafe out there in the digital world?

    for what it's worth, i have decided to limit use of my apple id and shut off my icloud account...now it's back to saving everything on an external hard drive (on 3TB, that is)...

    yes, we've become that paranoid now...
     
  20. raypin

    raypin PhilMUG Addict Member

    Joined:
    Jun 8, 2008
    Messages:
    12,945
    Likes Received:
    5,734
    mmm......lesser of two evils: you lose control over your digital life vs. dealing with the minutiea of digital security to padlock your digital life.
     

Share This Page

  • About PhilMUG

    Since the mid-1990s, PhilMUG (formerly the Philippine Macintosh Users Group) has grown to become not just the Philippines’ but one of the world’s foremost Apple user groups. Our online community brings together thousands of members from the Philippines and around the world for the latest news and discussions covering all Apple products and related hardware and software. Anyone can join PhilMUG, from newbies to experts, subject to our membership rules and guidelines.
  • Like us on Facebook

  • Buy us a beer!

    The staff works very hard to make sure that PhilMUG is running 24/7. Care to buy us a beer or help out with our hosting fees? We'd really appreciate it!

    Donate to us!