An unknown number of Apple customers located in Australia had their accounts locked and were asked to pay $100 to access their own data, according toÂ itnews.com.au.
Apple device owners, including iPhones, tablets, laptops or desktops, started to complain on Appleâ€™s support forum about a message saying â€œDevice hacked by Oleg Plissâ€ appearing inside the Find My Phone section of their iCloud account.
The Find My iPhone app allows Apple users to locate and remotely lock their devices in case of loss or theft. Inside the app, users can activate the Lost Mode feature, which seals the device with a unique passcode. If the device passcode was not set, iCloud will prompt users to create one.
â€œI have logged into iCloud and changed my password, I can see the hack message inside Find my Phone in iCloud. I can see though that if I turn off Lost Mode the passcode the hacker set will still remain. Has anyone called the police? It is a fraud attempt after all,â€ one user writes.
It seems hackers obtained usersâ€™ iCloud login credentials, activated the Lost Mode feature and used it to remotely set a new password and lock users out.
â€œIf you had your own passcode, the hackersâ€™ passcode is obsolete as your passcode would override it. Therefore he could not gain access. If you didn’t have a passcode on your device and he set one, then his would be the one you need to unlock,â€ another user says.
To solve the problem, some users recommend restoring the device from a backup within their iTunes account.
â€œMost likely, the hacker phished the usersâ€™ iCloud account and changed their PINs in demand of ransom money. Securing the iCloud credentials is as important as ensuring the physical security of the iOS device, as well as the security of other computers system you use to log into this serviceâ€, said Bogdan Botezatu, Senior E-Threat Analyst at Bitdefender.
Bitdefender recommends using strong, complex passwords to minimize the risk of data theft. As an additional security measure, users canÂ enable two-factor authentication for their Apple ID.