Another hacker, 28-year-old Edward Majerczyk, pleaded guilty to "Celebgate", the leak of private data of many celebrities and other people.
In September 2014, the Internet was flooded with private photos and videos of famous women who had fallen for scam websites and emails asking for their iCloud and Gmail login credentials.
V March of this year your share of this strongly mediatized Hacker Ryan Collins admitted to the leak of private data and faces up to five years in prison. Help phishing gained access to 50 iCloud and 72 Gmail accounts.
Now another hacker, Edward Majerczyk, has made a similar confession. He used phishing to gain access to up to 300 iCloud and Gmail accounts. Court documents do not include any names of the victims, but they are believed to include women who were part of "Celebgate."
In a press release, Deputy FBI Director Deirdre Fike commented on Majerczyk's wrongdoing, saying, "This defendant didn't just hack into email accounts — he hacked into his victims' private lives, causing embarrassment and lasting harm."
Like Collins, Majerczyk faces up to five years in prison for violating the Computer Fraud and Abuse Act (CFAA).
None of the hackers, at least so far, have been charged with sharing the victims' private data.
Even Apple itself should admit its fault, the possibility to try the password to log into the account indefinitely is punishable, but it is not talked about.
I'll admit that I haven't looked into what kind of security iCloud has (as far as I know, at least currently there's no limit on login attempts). However, in the case of Celebgate, as mentioned in the article, the hackers used phishing sites - they did not break iCloud protection, but fraudulently obtained login information directly from the account holders.
Exactly.. The above-mentioned error with trying the password has only the fact that it was fixed afterwards???
Maybe in this couple of cases, but otherwise she was very much to blame ;-).
There were a lot of tech errors, not only on the user's side, but also on Apple's side. However, especially the users were quite careless, at least two-phase authentication turned on would solve everything for them, then the password is for you ;-).
It was talked about when it was current ;-).
At least the biggest mistake of those in America was that they did not have two-phase verification. I don't know how in the UK, but in Europe in general at that time there was no 2-phase verification. Then the error was in simple and probably slightly modified and guessed passwords. Apple did it back then by not warning people that someone was logging into their website and by not blocking those accounts even after X attempts. Of course, I'm already doing that (login email, two-phase verification in Europe, or credit lock).