Industry News

Apple Developer Center Breach; 100k Accounts Exposed

Apple Tops Phishing Targets in First Half of 2014, Report Says

Apple’s developer site suffered a massive breach last Thursday that resulted in the compromise of roughly 100,000 developer accounts.

The intrusion was quickly identified and the affected server was taken offline for “maintenance.” Only on Sunday did the Cupertino vendor publish extra details about the hack, pending a security audit.

“Last Thursday, an intruder attempted to secure personal information of our registered developers from our developer website,” Apple wrote in an e-mail to developers. “Sensitive personal information was encrypted and cannot be accessed, however, we have not been able to rule out the possibility that some developers’ names, mailing addresses, and/or email addresses may have been accessed.”

The portal is used by app developers to manage their accounts and application submissions, but also hosts the company’s developer forums and API documentation, amongst others.

Fortunately, no customer information or application code was exposed in the attack, company spokespersons told MacWorld.

About the author


Bogdan Botezatu is living his second childhood at Bitdefender as senior e-threat analyst. When he is not documenting sophisticated strains of malware or writing removal tools, he teaches extreme sports such as surfing the web without protection or rodeo with wild Trojan horses. He believes that most things in life can be beat with strong heuristics and that antimalware research is like working for a secret agency: you need to stay focused at all times, but you get all the glory when you catch the bad guys.