Hijackers of Apple devices demanding ransom in Australia

Share:

iphoneSeveral users of Apple devices in Australia have reported that their gadgets have been “hijacked” – with a message demanding money.

Experts believed the hack had targeted users by exploiting the Find my iPhone feature.

A message appeared on some targeted phones asking for “$100 USD/EUR” to be sent to a PayPal account.

Mobile networks have advised affected users to contact Apple, which has not yet commented on the problem.

It appeared that the attacker gained access to users’ iCloud accounts, the cloud storage service offered by Apple that is able to access devices remotely.

PayPal has said any funds sent to the specified account would be refunded.

‘Woke me up’
According to the Sydney Morning Herald, the problem spread across much of Australia, with reports of attacks in Queensland, New South Wales, Western Australia, South Australia and Victoria.

iCloud logo
Apple’s iCloud co-ordinates data across devices but cut one journalist off from his digital life
However, reports have emerged from further afield, with at least one case said to have occurred in London. It involved an Australian visiting on holiday.

Concerned users took to Apple’s support forums, and Twitter, to share details of attacks, which affected iPhones, iPads and, in some cases, Mac laptops.

“This has happened to me too in Brisbane, woke me up half an hour ago,” wrote one user, amberoonie.

“Freaking out as when I opened my laptop it had the same message ‘Device hacked by Oleg Pliss. For unlock device’ with the Find My iPhone icon.”

It is unlikely the hacker would use his real name in the message.

‘Not an option’
Information security consultant Brian Honan told the BBC that so far little is known about the source of the attacks.

He said theories ranged from someone having access to Apple’s systems, to hackers having access to a database of usernames and passwords – perhaps obtained from a third party.

Regardless, he said Apple had to move quickly to reassure users.

“One of the key things, as in any security breach, is being able to communicate proactively with your affected customers,” he said.

“Even just to let them know what you’re doing to deal with the issue can be reassuring. Remaining silent is not an option these days.”

BBC

Share: