Category Archives: iOS Devices

Apple ‘actively investigating’ alleged iCloud hacking that caused celebrity nude photo leak

icloud

Re/code has received a statement from Apple about the alleged hacking incidents. Natalie Kerris says:

“We take user privacy very seriously and are actively investigating this report,” said Apple spokeswoman Natalie Kerris.

As is the norm with Apple’s public facing commentary, the company has not said much about the situation. Somehow, compromising personal pictures of several celebrities have leaked online and many are blaming iCloud as the root cause. The events are muddled by the fact that some of the reported claims have transpired to be fake Photoshopped images, although some — like the images of Jennifer Lawrence — have been confirmed to be legitimate.

Earlier today, a brute-force iCloud exploit was highlighted that may offer an explanation for the leaks, where Apple servers were repeatedly pummelled with common passwords to try and break entry into user’s accounts. This flaw has already been patched, but it is important to note that this issue is not necessarily linked to the celebrity hacks. It is also unclear when the vulnerability was first exploited. Photo Stream only stores the last 1000 images, so it seems likely that those responsible has been working for a while to collate the collection of images.

It is also important to stress that something else entirely, not iCloud, could be the root source of the hacks. 9to5Mac will report on the happenings as it evolves. For now, the best advice to protect against such attacks is to enable two-factor authentication, which makes dictionary attacks near-impossible to pull off.


Filed under: AAPL Company, iOS, iOS Devices Tagged: Apple, celebrity leaks, iOS, photos

Visit 9to5Mac to find more special coverage of AAPL Company, iOS Devices, and Apple.

What do you think? Discuss "Apple ‘actively investigating’ alleged iCloud hacking that caused celebrity nude photo leak" with our community.

Plácido Domingo to close iTunes Festival on September 30, show kicking off today with deadmau5

iTunes Festival London

Placido Domingo has been announced as the final closing act for Apple’s iTunes Festival London. Apple has also added a few more acts than what had been previously announced, to round out the lineup. This includes The Mirror Trap, Friend Within and the London Electronic Orchestra.

The month-long festival starts today at 9 PM UK time (1 PM PST), with ‘Deadmau5′ headlining Monday’s show. A full schedule can be found online at http://itunesfestival.com.

iPhone, iPad, Windows and Mac users can tune in to the gigs using the iTunes app. Videos of the performances will be streamed live as well as on-demand for free. If you live in the UK, you can still apply to win tickets to go to the event in person. The iTunes Festival is also being broadcast on Apple TV, with the dedicated app.


Filed under: iOS, iOS Devices, Mac Tagged: Apple, iTunes, iTunes Festival, Music, TV

For more information about iOS Devices, Apple, and iTunes continue reading at 9to5Mac.

What do you think? Discuss "Plácido Domingo to close iTunes Festival on September 30, show kicking off today with deadmau5" with our community.

New hands-on footage claims to show 5.5-inch ‘iPhone Air’ (Video)

5.5%22 iPhone 6 (Air) Rear Shell Hands On - YouTube 2014-09-01 09-23-34 2014-09-01 09-23-35

As the days go by leading up to next week’s September 9th event, the part leaks for Apple’s next flagship handsets keep streaming in. The 5.5-inch model in particular has been getting a lot of attention lately, with multiple sources leaking photos of its casing and supposed components. Today’s offering, courtesy of French site Nowhereelse.fr, is another look at the shell of what the publication is calling the “iPhone Air.”

Apple is reportedly working on two models of the next iPhone for release this fall, both rumored to be getting the spotlight at a special event on September 9th. Both models of the refreshed flagship are said to be getting a larger screen than the iPhone 5s, shipping in both 4.7 and 5.5-inch sizes. The above 5.5-inch device is rumored to be shipping with a sapphire crystal display, while it’s reported that only some of the smaller, 4.7-inch models will sport the same.

Various reports have claimed that while the 4.7-inch model will be available more readily, the 5.5-inch version may be released later in the calendar year due to supply constraints on key components. That said, the latest reports from reliable sources suggest that both models will at least be unveiled come September 9th. Apple is reportedly also planning to introduce a wearable product at that event as well.


Filed under: iOS Devices Tagged: iPhone 6, iphone 6l, iPhone air, leak, rumor, shell, video

Visit 9to5Mac to find more special coverage of iOS Devices, iPhone 6, and video.

What do you think? Discuss "New hands-on footage claims to show 5.5-inch ‘iPhone Air’ (Video)" with our community.

Vulnerability in Find My Phone service and weak passwords may explain alleged celebrity photo leaks

celebrity-hack

The Next Web is reporting that a vulnerability in the Find My Phone service may have allowed attackers to brute-force passwords in order to access the iCloud accounts of celebrities.

The vulnerability allegedly discovered in the Find my iPhone service appears to have allowed attackers to use this method to guess passwords repeatedly without any sort of lockout or alert to the target. Once the password has been eventually matched, the attacker can then use it to access other iCloud functions freely.

A tool to exploit the weakness was uploaded to Github, where it remained for two days before being shared on Hacker News … 

Apple patched the service at 3.20am PT today. While it’s possible that the timing was coincidental, an iCloud exploit being posted online just two days before the photos appeared, and being patched shortly after the story broke, makes this seem unlikely. Apple has not yet responded to a request for comment.

It’s worth noting that the vulnerability did not allow access to iCloud passwords, it only permitted repeated guesses or an automated dictionary attack. In order for it to succeed, relatively weak passwords would need to have been used on the accounts accessed.

As a lot of celebrities know each other, it’s likely that once one account was compromised, contacts data could be used to identify the email addresses of other celebrities, doing the same thing with each account accessed.

While the tool only appeared on Github two days ago, its author or others may have had access to it for far longer, potentially explaining the reported publishing of photos deleted by their owners some considerable time ago.

As with any online service, it’s always advisable to use strong passwords and two-factor authentication.


Filed under: AAPL Company, iOS Devices Tagged: Apple, Celebrity photo hack, Find My Phone, GitHub, Hacker News, icloud, iCloud hack, iCloud vulnerability, iPhone, Password, Password strength

Check out 9to5Mac for more breaking coverage of AAPL Company, iOS Devices, and Apple.

What do you think? Discuss "Vulnerability in Find My Phone service and weak passwords may explain alleged celebrity photo leaks" with our community.

Vulnerability in Find My Phone service and weak passwords may explain alleged celebrity photo leaks

celebrity-hack

The Next Web is reporting that a vulnerability in the Find My Phone service may have allowed attackers to brute-force passwords in order to access the iCloud accounts of celebrities.

The vulnerability allegedly discovered in the Find my iPhone service appears to have allowed attackers to use this method to guess passwords repeatedly without any sort of lockout or alert to the target. Once the password has been eventually matched, the attacker can then use it to access other iCloud functions freely.

A tool to exploit the weakness was uploaded to Github, where it remained for two days before being shared on Hacker News … 

Apple patched the service at 3.20am PT today. While it’s possible that the timing was coincidental, an iCloud exploit being posted online just two days before the photos appeared, and being patched shortly after the story broke, makes this seem unlikely. Apple has not yet responded to a request for comment.

It’s worth noting that the vulnerability did not allow access to iCloud passwords, it only permitted repeated guesses or an automated dictionary attack. In order for it to succeed, relatively weak passwords would need to have been used on the accounts accessed.

As a lot of celebrities know each other, it’s likely that once one account was compromised, contacts data could be used to identify the email addresses of other celebrities, doing the same thing with each account accessed.

While the tool only appeared on Github two days ago, its author or others may have had access to it for far longer, potentially explaining the reported publishing of photos deleted by their owners some considerable time ago.

As with any online service, it’s always advisable to use strong passwords and two-factor authentication.


Filed under: AAPL Company, iOS Devices Tagged: Apple, Celebrity photo hack, Find My Phone, GitHub, Hacker News, icloud, iCloud hack, iCloud vulnerability, iPhone, Password, Password strength

Check out 9to5Mac for more breaking coverage of AAPL Company, iOS Devices, and Apple.

What do you think? Discuss "Vulnerability in Find My Phone service and weak passwords may explain alleged celebrity photo leaks" with our community.

Apple highlighting top ten reasons apps get rejected on new developer page

Screen Shot 2014-08-31 at 12.25.21

As noticed by Apfelpage, Apple has published a new page to be more open about why it rejects apps. A chart at the bottom of the page shows the top ten reasons for app rejection in the last seven days; such as lack of information, crashes or bugs encountered, complicated user interfaces. Around 60% of rejections come from violation of just ten guidelines of the App Store rules. Some of these, like the existence of placeholder text in applications, seem rather trivial issues and it’s interesting that it arises so frequently as a cause of rejection.

The page goes into more detail on some of these points. In one instance, Apple highlights what it deems to be a ‘substandard user interface’, which apparently is responsible for 6% of all rejections. In the example, Apple advises use of a tableview to cleanly lay out information.

rejections-user-interface_2x

Although none of the advice is particularly revolutionary, it should help iOS app developers (especially those new to the ecosystem) sail through App Review more easily. The information also has a side-benefit; the less time Apple reviewers spend dealing with app issues, the faster the review process should become for all developers.

 


Filed under: Developers, iOS, iOS Devices, Mac Tagged: Apple, Apps, iOS, review

For more information about iOS Devices, Apple, and iOS continue reading at 9to5Mac.

What do you think? Discuss "Apple highlighting top ten reasons apps get rejected on new developer page" with our community.

Support for 3x image assets found in latest iOS 8 beta ahead of larger display iPhone 6

header

Developer James Thompson has found an interesting behavior in the latest iOS 8 beta, giving even more weight to the reports that indicate the iPhone 6 will feature a new resolution, featuring a new ‘pixel-tripling’ scaling factor of 3. In May, 9to5Mac first broke news of Apple testing a new screen resolution for an upcoming iPhone, which used a 3x screen scale for content.

The behavior is inconsistent, as iOS 8 beta 5 does not always load these 3x assets. However, it reliably chooses the 3x image on 2x devices using the ‘initWithContentsOfFile’ method. After seeing Thompson’s discovery, 9to5Mac has independently confirmed that this is indeed the case.

2014-08-29 at 19.48

The code used to replicate the behavior.

Using a set of test images with @1x, @2x and @3x suffixes, the code will always load the 3x asset, even though — per documentation — it should select the image for the current device’s screen scale. For clarity, each test image is numbered for which scale it represents. Thus, the number 3 in the iOS Simulator shows that iOS has selected the image suitable for a 3x screen scale.

To get an idea of the relative sharpness of 1x, 2x and 3x sizes, see the image above for a reasonable approximation. The difference is rather striking. The 1x image is extremely pixellated, the 2x has imperfections with curves but the 3x asset is perfectly smooth.

Moreover, the code path does not accept any arbitrary scale. Testing with other sizes, such as 4x or even 8x, does nothing. The routine specifically chooses 3x image assets. This suggests this behavior is not simply a bug, but is representative of upcoming iPhone features. The implementation of the API specifically looks for @3x assets only. This likely foreshadows what Apple is readying for its new iPhones.

Therefore, this is strong evidence that the next iPhone (or at least, an imminent iOS device) will use a screen with a 3x scale. Unfortunately, this does not help pinpoint a specific resolution, aside from reaffirm that the new iPhones will have significantly more pixels than found in the iPhone 5s. 9to5Mac has reported on Apple testing both 568×320 and 414×736 logical screen resolutions. At 3x, the actual screen resolution of the device would be 1704×960 or 1242×2208. For comparison, the screen resolution of an iPhone 5s is 1136×640.

Apple will announce its new iPhones at its press event on September 9th.


Filed under: Developers, iOS, iOS Devices Tagged: 3x, Apps, iOS, iPhone 6

Check out 9to5Mac for more breaking coverage of iOS Devices, iOS, and iOS.

What do you think? Discuss "Support for 3x image assets found in latest iOS 8 beta ahead of larger display iPhone 6" with our community.