Cybersecurity is more relevant than ever. In USA, institutions as important as the DGT have suffered attacks. Businesses need to better protect themselves from hackers who are usually one step ahead. Apple has always stood for privacy and security data from its users.
So much so that, for example, for Apple Intelligence they created your own servers with Apple Silicon, making them practically inaccessible. However, according to a publication by DarkWebInformer, a team of hackers managed to access three internal Apple tools used by its employees.
The code of several Apple tools in the hands of hackers
According to IntelBroker, the code for three internal Apple tools has been obtained. In fact, this was confirmed in an internal hacker forum. These tools you accessed would be used by employees on different occasions.
- Apple-HWE-Confluence-Advanced
- AppleConnect-SSO
- AppleMacroPlugin
Computer security expert Andrew Chenke studied the usefulness of these three tools in analyzing the possible impact of this security breach. According to their findings, the first, Apple-HWE-Confluence-Advanced, Used in hardware manufacturing equipment and controlscomprising primarily branding and corporate identity, without any sens itive or seemingly useful information.
The second analysis, concerning AppleConnect-SSO, seems to be dedicated to the Apple Store team, including the application ID, administrator password, and validation URL. However, since it is based on Atlassian software from 2011 and has not been updated since 2013, it is unlikely to still be used. Finally, AppleMacroPlugin is, as its name suggests, a plugin that by itself it does not contain information sensitive and about which there is less information.
Typically, hackers obtain the code of these tools with the aim of sell the data or demand ransoms from affected companies. In the specific case of Apple, so far made no official statement he also did not confirm the authenticity of this alleged data leak,
Although the leak revealed technical details about Apple’s internal infrastructure, these are isolated codes and marketing materials that, They alone do not affect user protection nor do they commit the company to a larger leak.
Apple would not have been the only one and claims to have accessed AMD data
During the same month of June, IntelBroker also attacked AMD servers. In this case, the company acknowledged it was investigating. AMD’s leak would be more serious than that of Apple, since the hacker claims to have employee data with your username, your first and last names, your functions, Phone numbers and email addresses.
In Applesfera | Wave of cyberattacks in USA, how to protect yourself against data leaks using the iPhone
In Applesfera | The New Way Hackers Get Their Hands On Your Apple ID Is So Credible I Would Have Fallen For It Myself