Apple acknowledges iCloud attack, says servers were not affected
Following reports yesterday that China was secretly collecting data from iCloud users, Apple has confirmed to Dow Jones that it is aware of network attacks on its service. The iPhone maker said it knows about “intermittent organized network attacks” on people who were trying to access iCloud.com, although the company failed to mention China specifically in the statement to Dow Jones. Apple did say these recent attacks had not compromised its servers, and added that iOS and desktop users (who running the latest version of OS X) should not be worried — it appears this issue was limited to the iCloud website. We’ve reached out to Apple for comment and will keep you in the loop should any more details emerge soon.
Update: Below is Apple’s official statement on the matter, along with a link to some browser security instructions.
We’re aware of intermittent organized network attacks using insecure certificates to obtain user information, and we take this very seriously. These attacks don’t compromise iCloud servers, and they don’t impact iCloud sign in on iOS devices or Macs running OS X Yosemite using the Safari browser.
Source: Dow Jones