News

Turkish researcher claims responsibility for Apple dev site hack

Robert Richardson, Editorial Director

A Turkish security researcher, Ibrahim Balic, issued a sceencast video on YouTube earlier today -- which was initially public, but was yanked from public viewing this afternoon -- that appeared to show he successfully hacked into Apple's

    Requires Free Membership to View

developer program website. The Apple site had gone offline this past Thursday, at first without explanation, and then later with the notice that "an intruder attempted to secure personal information of our registered developers from our developer website. Sensitive personal information was encrypted and cannot be accessed; however, we have not been able to rule out the possibility that some developers' names, mailing addresses and/or email addresses may have been accessed."

Screen shot from YouTube video claiming credit for Apple developer site hack. The user's name is shown in the clear in the original.

Balic told Britain's The Guardian that his: "Intention was not attacking. In total I found 13 bugs and reported [them] directly one by one to Apple straight away. Just after my reporting [the] dev center got closed. I have not heard anything from them, and they announced that they got attacked."

One cause of initial comments on YouTube following the appearance of the video was the inclusion in the video of actual usernames and email addresses. One commenter, for example, felt that "a real Web security expert would never expose personal info on YouTube!"

In a weekend letter to account holders at the site, Apple said it is "completely overhauling our developer systems, updating our server software, and rebuilding our entire database."


There are Comments. Add yours.

 
TIP: Want to include a code block in your comment? Use <pre> or <code> tags around the desired text. Ex: <code>insert code</code>

REGISTER or login:

Forgot Password?
By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy
Sort by: OldestNewest

Forgot Password?

No problem! Submit your e-mail address below. We'll send you an email containing your password.

Your password has been sent to: