2_Spicy_2_Impeach t1_izdc4dp wrote on December 8, 2022 at 7:03 AM

Reply to comment by qwerty12qwerty in Apple announces plans to encrypt iCloud data on its servers, including full backups, photos and notes. by [deleted]

People are dumb and adding 2FA wasn't nearly as big for the general public in 2014. You get one celebrity, then you check their contacts to springboard from there.

If you found a flaw in iCloud that would allow you to pull anyone's iCloud backups, you wouldn't waste that on celebrities. You'd start looking at government officials and/or sell the exploit to a nation that's not the US for a king's ransom.

Social engineering works. That's why it's still so popular.

PaperclipStrategy t1_izdtmi6 wrote on December 8, 2022 at 11:09 AM

>"...You'd start looking at government officials and/or sell the exploit to a nation..."

maybe if your a state-actor but i recall when that U.S. pipeline management software got infected with ransomware, the russian hackers practically shit themselves when they realized the impact of their effect on international geopolitics --At least as i understood it.

2_Spicy_2_Impeach t1_izebjr9 wrote on December 8, 2022 at 2:12 PM

If you were a state sponsored, you’d never waste your time on celebrities with an exploit like that. Again, if you had an exploit like this, you could charge whatever you want. It’d eventually leak as well since you would be offering iCloud backup access to almost anyone for a fee. Even at trial for the guy at the center of this, they found it was phishing emails that got his 100+ victims.