Apple says iCloud not breached in Jennifer Lawrence, other celebrity photo hack
LOS ANGELES (Variety.com) - Apple said Tuesday that certain accounts of Hollywood celebrities were compromised via a "very targeted attack" on its services -- but that neither iCloud nor Find My iPhone were breached -- and that the company was working with law enforcement officials to track down the individuals responsible for the incident.
"When we learned of the theft, we were outraged and immediately mobilized Apple's engineers to discover the source," Apple said in a statement. "Our customers' privacy and security are of utmost importance to us."
On Sunday, nude photos of Jennifer Lawrence, Kate Upton, Selena Gomez, Ariana Grande, Kirsten Dunst and as many as 100 others were posted online -- evidently stolen from their personal Apple accounts. The pictures, first uploaded to image-sharing site 4chan, appeared to show most of the celebrities nude or partially dressed. Apple said Monday that it was investigating the incident.
Apple said that after more than 40 hours of investigation, "we have discovered that certain celebrity accounts were compromised by a very targeted attack on user names, passwords and security questions, a practice that has become all too common on the Internet." The Cupertino, Calif.-based tech giant insistent that the cases did not represent a "breach" of any Apple system, including iCloud or Find My iPhone.
To protect against this type of attack, Apple said, it advises users to always use a strong password and enable two-step verification. Two-step verification requires users to verify their identity using one of their devices associated with an Apple account.