Apple is reassuring customers that its systems have not been breached while a hacker, or hackers, threaten to remotely wipe hundreds of millions iPhones of all their data, including photos, videos, and messages.
The hackers are using an alleged cache of stolen email accounts and passwords as leverage in an attempt to extort the world’s most valuable company. They claim to have access to as many as 559 million Apple email and iCloud accounts, Vice blog Motherboard reported on Tuesday.
The group, calling itself “Turkish Crime Family,” said it would delete its alleged list of compromised login credentials only after Apple pays it $75,000 in cryptocurrency, either Bitcoin or rival Ether, or $100,000 worth of iTunes gift cards, Motherboard reported. The group has given Apple (AAPL) a deadline of April 7 to meet its demands.
Though Apple has not officially confirmed the authenticity of the data that the hackers say they have, an Apple spokesperson told Coins2Day in an emailed statement that, if the list is legitimate, it was not obtained through any hack of Apple.
Get Data Sheet, Coins2Day’s technology newsletter.
“There have not been any breaches in any of Apple’s systems including iCloud and Apple ID,” the spokesperson said. “The alleged list of email addresses and passwords appears to have been obtained from previously compromised third-party services.”
A person familiar with the contents of the alleged data set said that many of the email accounts and passwords contained within it matched data leaked in a past breach at LinkedIn. The professional networking site, since acquired by Microsoft (MSFT), was pilfered of information for more than 100 million accounts in 2012, though the extent of the digital heist only came to light last year.
Criminals often recycle data purloined in past breaches to further their scams, usually by attempting to access other online services where victims may have reused passwords. It’s also not uncommon for hackers to use journalists as megaphones to bring attention to their claims, even when their threats are empty.
The likelihood of a mass remote wipe of iPhone data is unknown, though there is reason to be skeptical. The Apple spokesperson said that Apple is “actively monitoring to prevent unauthorized access to user accounts and are working with law enforcement to identify the criminals involved. To protect against these type of attacks, we always recommend that users always use strong passwords, not use those same passwords across sites and turn on two-factor authentication.”
The company representative declined to elaborate on what steps Apple had taken to monitor the situation. The spokesperson merely noted that such measures, whatever they may be, are “standard procedure.”
Apple customers who secure their iCloud accounts with the same passwords they use on other online accounts—especially ones at LinkedIn, Yahoo (YHOO), Dropbox, and other sites recently revealed to have suffered big breaches over the past few years—should adopt new passwords that are long, strong, and unique. Many security experts also recommend storing them in a password manager, and activating two-factor authentication, an additional layer of security, where available.
