As we reported yesterday, over 100 celebrities’ iCloud accounts were allegedly hacked and their nudes slathered all over the internet. At the time the hacker claimed he had breached Apple’s iCloud service and accessed the celebs’ photos. Today Apple has issued a statement that counters his claims. The Cupertino company states rather emphatically that while yes accounts were compromised, it wasn’t any kind of breach on their end. See what they have to say:
CUPERTINO, Calif.–(BUSINESS WIRE)–We wanted to provide an update to our investigation into the theft of photos of certain celebrities. When we learned of the theft, we were outraged and immediately mobilized Apple’s engineers to discover the source. Our customers’ privacy and security are of utmost importance to us. After more than 40 hours of investigation, we have discovered that certain celebrity accounts were compromised by a very targeted attack on user names, passwords and security questions, a practice that has become all too common on the Internet. None of the cases we have investigated has resulted from any breach in any of Apple’s systems including iCloud® or Find my iPhone. We are continuing to work with law enforcement to help identify the criminals involved.
To protect against this type of attack, we advise all users to always use a strong password and enable two-step verification. Both of these are addressed on our website at http://support.apple.com/kb/ht4232.
Moral of the story? Watch those passwords. Change then often, don’t use the same one for other sites, make it stronger than “password” and for geek’s sake, don’t share your details with others. Another thing you Apple geeks can do is enable two-factor authentication on your iCloud account. In fact do that for every account you have, if available.