Apple iCloud hack in China from 2014 - Case Study (Introduction)

In 2014, Apple iCloud service was hacked in China. It allows collecting the sensitive data, such as AppleID, password and other personal data of iPhone users from the most populous country (Timberg, 2014). It means hackers, who have done this attack may have information about iPhone users such as a list of the contacts, emails and credit cards connected with ApplePay. Moreover, hackers may have access to user's photos, videos.


Internet in China looks different than this one we are used to. People are not allowed to access many websites such as Facebook or Twitter, because the Chinese government is censoring much information (Su and Shyong, 2019). Chinese people are using different software as well.
 

In this case study, I want to show, how lacks in Chinese software lacks in cybersecurity allow the hackers to attack iCloud, the service of Apple, one of the biggest IT company at the world. Secondly, I want to describe the method of attack, which was "man-in-the-middle" (Timberg, 2014).





References:

Su, A. and Shyong, F., 2019. The Chinese And Non-Chinese Internet Are Two Worlds. Here’S What It’S Like To Use Both. [online] Los Angeles Times. Available at: <https://www.latimes.com/world/la-fg-us-china-internet-split-20190603-story.html> [Accessed 3 December 2020].
Timberg, C., 2014. Apple’S Icloud Service Suffers Cyber-Attack In China, Putting Passwords In Peril. [online] The Washington Post. Available at: <https://www.washingtonpost.com/news/the-switch/wp/2014/10/21/apples-icloud-service-suffers-cyber-attack-in-china-putting-passwords-in-peril/> [Accessed 20 November 2020].

Comments

  1. Test20 November 2020 at 08:29

    Hi Daniel

    Good beginning
    we can still improve introduction by setting a scene and provide a bit further what to expect in case study to reader.

    Many thanks
    Chirag

    ReplyDelete

Post a Comment

Popular posts from this blog

SSL Asymmetric Encryption (Diagram 2)

Image
SSL Cryptography bases two types of encription, which is Asymmetric Encryption and Symmetric Encryption (Johansen, 2020). Asymetric Encription: This type of encryption is the most popular one, which is using usually. In this technology, client and server to connect use two different keys, public and private. Public key is using only for encryption. It means, anyone can use this key to encrypt the message. Private key is secret and is using only for decryption.   Asymmetric encryption (Author's work) Resources: Johansen, A., 2020. What Is Encryption And How Does It Protect Your Data? . [online] Us.norton.com. Available at: <https://us.norton.com/internetsecurity-privacy-what-is-encryption.html> [Accessed 20 November 2020].
Read more

Opinion about safety (Survey Analysis)

Image
In my questionnaire, I asked people about their feeling of internet safety. The question was "How safe do you feel with using internet services?" Author's work, 1 - not safe, 5 - very safe         As we can see, the majority of the group is feeling safe on the Internet. Only 6 of the responders are feeling completely safe, which is negative, because they may be less focused during using the Internet, which can cause an opportunity to be charmed by hackers. Development of cybersecurity technologies is possibly a reason, why nobody feels completely unsafe on the Internet. Author's work, 1 - not safe, 5 - very safe   However, the general feeling of safety on the Internet is not related to using online payments. As we can see in the diagram, more people are worried about their safety in case of online payments. Comparison of these 2 diagrams may suggest, people are more worried about their money, than their sensitive data such as name, address, location etc.
Read more

How Ransomware attack works? (Models & Methodologies)

Image
The history of ransomware attacks starts in 1989. The first known attack targeted the healthcare industry (De Groot, 2020). Currently, ransomware attacks are one of the most popular cyber attacks. It is as one of the biggest threats to cybersecurity (Thomas, 2019).   Ransomware is a type of malware, which is basing on files encryption. To do this type of attack, hackers are using different software. However, the method of the attack is usually the same.     Ransomware attack process (The Asean Post, 2019)       1. Spam attachment The most popular method of spreading ransomware is sending the email spam with infected link or attachment inside. Usually, a message in the email is telling an action is required. For example, the hacker is sending an email with an infected file named as "invoice" to the business owner (De Groot, 2020).    2. Malware execution The user, which is aware of receiving infected email is opening the attachment. The virus start...
Read more