Chinese Government Hackers Attacks iCloud Users

apple ID

Chinese hackers are trying to steal login credentials of iCloud users. According to, "This is clearly a malicious attack on Apple in an effort to gain access to usernames and passwords and consequently all data stored on iCloud such as iMessages, photos, contacts, etc."

Chinese hackers are using MITM attack to steal those user information. That is, hackers intercepting the connection between users and iCloud server and potentially gaining access to passwords, iMessages, photos and contacts.They attacks iCloud users by using a Self-signed certificate to intercept user's sensitive data.

MITM Attack ?

MITM stands for Man In The Middle Attack. As the name of this attack, the attacker will be placed himself between the iCloud server and the user, while intercepting the user's data.

Want to know about Man In the Middle Attack ?. Read our security article : Man In the Middle Attack Explained

Greatfire recommends users to use a trusted browser on their desktops and mobile devices - Firefox and Chrome will both prevent users from accessing when they are trying to access a site that is suffering from a MITM attack.

"If users have ignored the security warnings, they should find an undisrupted connection to This can be accomplished by using a VPN or by finding a different internet access point because the GFW’s(Great Firewall of China) MITM is not that stable. They should also enable two-step verification for their iCloud accounts. This will protect iCloud accounts from attackers even if the account password is compromised," Greatfire said.

Apple issued an official response in it's support page:

"Apple is deeply committed to protecting our customers’ privacy and security. We’re aware of intermittent organized network attacks using insecure certificates to obtain user information, and we take this very seriously. These attacks don't compromise iCloud servers, and they don't impact iCloud sign in on iOS devices or Macs running OS X Yosemite using the Safari browser."

No comments

Powered by Blogger.