Resultados 1 a 4 de 4
  1. #1
    WHT-BR Top Member
    Data de Ingresso
    Dec 2010
    Posts
    17,318

    [EN] Hackers claim to have 750 million iCloud.com, me.com and mac.com email addresses

    Experts Doubt Hackers’ Claim Of Millions Of Breached Apple Credentials

    Tom Spring
    March 25, 2017

    Security experts say they are skeptical that a group of hackers called Turkish Crime Family actually possess a cache of hundreds of millions of Apple iCloud account credentials. A more plausible explanation, they say, is that crooks used credential stuffing attacks to amass a limited number of valid Apple usernames and passwords in attempt to extort money from Apple.

    Earlier this week, the group identifying itself as the Turkish Crime Family claimed to have a database of 750 million iCloud.com, me.com and mac.com email addresses and credentials. Apple quickly cast doubts on the claim.

    “There have not been any breaches in any of Apple’s systems including iCloud and Apple ID,” Apple said in a statement. “The alleged list of email addresses and passwords appears to have been obtained from previously compromised third-party services.”

    Hackers behind the claim are demanding Apple pay them $75,000 in cryptocurrency or give them $100,000 in iTunes vouchers, according to reports. If demands are not met by April 7, the group said it will begin deleting data stored on iCloud accounts en masse.

    An independent analysis of 54 samples of the breached account data provided to ZDNet by the hackers were valid. However, security experts such as Troy Hunt, who runs the data breach repository HaveIBeenPwned.com, still isn’t convinced.

    Hunt told Threatpost he suspects the hack is a hoax, admitting he has not seen the any samples of the breached data.

    “It’s entirely possible whoever is behind this could have username and password pairs that work on a limited number of Apple accounts in just the same way as re-used credentials will work across all sorts of other accounts,” Hunt said. He said the Turkish Crime Family likely has a far smaller pool of valid Apple credentials than it claims.

    Shuman Ghosemajumder, CTO of the firm Shape Security told Threatpost he suspects the hackers may have used credential stuffing attacks, using data from previous breaches, to gain access to an undetermined number of iCloud accounts.

    Credential stuffing is the use of automated brute-forcing tools such as Sentry MBA to test stolen passwords against other unrelated websites. Shape Security estimates that last year alone 3.3 billion credentials were exposed via breaches. Despite credential stuffing’s low success rate of 1 percent to 2 percent, Ghosemajumder said, when applied to a large enough cache of data (purchased on the dark web by the database) the hackers may have enough information to successfully crack thousands of Apple accounts.

    “There are certainly enough credentials spilled onto the internet to think someone could use credential stuffing techniques to pull together a convincing number of valid accounts in attempt to extort Apple for ransom money,” Ghosemajumder said.

    Patrick Wardle, director of research at Synack, echoed the same credential theory suggesting that breaches over the past year have given hackers ample opportunity to pull together some valid iCloud account credentials.

    Since approaching Apple earlier this month with its demands, the Turkish Crime Family has been inconsistent about how many account credentials it allegedly possesses. Speaking to various different media outlets, the group has said it had 200 million credentials to as many as 750 million.

    The hacking group said that its repository isn’t the result of one breach, rather multiple.

    “The entire DB was acquired and built from multiple DB’s that we have been selling in the past 5 years as we decided to keep all our @icloud.com, @me.com & mac.com domains… More and more people started getting involved after all the press release world wide, these people have been providing us even more databases which we did not already have,” according to a message allegedly posted by the hackers to the website Meethackers.

    On Thursday, the group claimed to have a database of 750 million credentials, 250 million of which are “checked and working,” according to the group.

    Meanwhile, Apple says it’s actively monitoring to prevent unauthorized access to user accounts and is working with law enforcement to identify the criminals behind the Turkish Crime Family extortion scheme.

    https://threatpost.com/experts-doubt...entials/124574

  2. #2
    WHT-BR Top Member
    Data de Ingresso
    Dec 2010
    Posts
    17,318
    "If demands are not met by April 7, the group said it will begin deleting data stored on iCloud accounts en masse"



    "... echoed the same credential theory suggesting that breaches over the past year have given hackers ample opportunity to pull together some valid iCloud account credentials"

    Por que a preferência pela Apple?

  3. #3
    Moderador
    Data de Ingresso
    Oct 2010
    Localização
    Rio de Janeiro
    Posts
    2,737
    Segundo a Apple essas credentials foram de outros leaks que não dela, em que o login e senha eram os mesmos em mais de um serviço (culpa dos usuários). Li em algum site isso (acho que TechRepublic ou outro jornal) e que os caras entrevistaram algumas dessas pessoas e elas confirmaram que a senha era a mesma e nunca tinha sido trocada mesmo depois do leak...

  4. #4
    WHT-BR Top Member
    Data de Ingresso
    Dec 2010
    Posts
    17,318
    Citação Postado originalmente por cresci Ver Post
    Segundo a Apple essas credentials foram de outros leaks que não dela, em que o login e senha eram os mesmos em mais de um serviço (culpa dos usuários). Li em algum site isso (acho que TechRepublic ou outro jornal) e que os caras entrevistaram algumas dessas pessoas e elas confirmaram que a senha era a mesma e nunca tinha sido trocada mesmo depois do leak...
    Essa tem sido a explicação usual. A questão é que da mesma forma que pode ser obtido um conjunto válido de credenciais para um determinado serviço da Apple, inúmeros conjuntos podem ser elaborados para inúmeros serviços. Seria a Apple pagadora contumaz de chantagens e as demais empresas duronas?

Permissões de Postagem

  • Você não pode iniciar novos tópicos
  • Você não pode enviar respostas
  • Você não pode enviar anexos
  • Você não pode editar suas mensagens
  •