Strategy, Vulnerability management

Apple patches iCloud vulnerability exploited by iDict hacking tool

January 5, 2015

A vulnerability in Apple's iCloud service that was recently exploited by the iDict hacking tool released by a hacker known as Pr0x13 on New Year's Day has been patched, according to posts on Twitter from Pr0x13.

Upon releasing the tool on GitHub, Pr0x13 noted that the “bug is painfully obvious and was only a matter of time before it was privately used for malicious or nefarious activities” prompting the hacker to “publicly [disclose] it so apple will patch it.” 

iDict used a brute-force attack to guess a user's password. By Jan. 2, iCloud accounts were being locked to thwart hackers' attempts to gain access.

The security of Apple's iCloud service has recently been questioned after attackers hacked into celebrity accounts and published nude photos, prompting the company to beef up security, including implementing two-factor authentication.

prestitial ad