Can we talk about the apparent iCloud break-in?

Status
Not open for further replies.
We just don't have enough data to know one way or the other.

That said, having dealt with Apple over the years at various jobs from a partner/customer/vendor perspective, they suck at the internet way more than most would expect. They put a pretty face on their services, but their back-ends are a mess. They outsource a ton of their infrastructure for their cloud services. Their APIs are a mess, inconsistent, poorly documented and riddled with 3rd party software that their support knows nothing about. I wouldn't be terribly surprised if someone figured out an obscure exploit to grab others' photos.

Edit: Just to clarify, because I realize that reads as particularly harsh, everyone 'sucks at the internet' to some degree, even Google. Also, I can pretty much guarantee security people at quite a few other companies besides Apple are losing sleep tonight over this.

They are not losing sleep if this all stem from that API issue. Any public API containing sensitive information should never accept direct input of credentials. You need an authenticator that allows the user to authenticate themselves without any application having direct access to their credentials other than the source of the information being requested (in this case, Apple).
 
Okay, I did not understand that point from your followup posts as I was unable to trace it back to the original. Thank you for clarifying for me.

In that case, I guess I am forced to agree that the primary difference boils down to what individuals are sexually attracted to. If I posted a photo of my kids at the beach and someone takes that off facebook and shares it without consent, and someone who downloads it masturbates (and stops there) and I never learn about it, I guess that's not too dissimilar from someone masturbating visually to a "mental" picture of my children. It's a scary thought, but I suppose if that was ALL that happened, it would be hard to pinpoint a victim or the damage done.

That being said, I do think society has some grounds to prosecute individuals actively engaging in pedophilia. I guess the argument is that it's either a slippery slope, or the idea that individuals masturbating to kids beach photos may also have committed child abuse but there is insufficient evidence. It might also serve as a deterrent. I am less concerned that individuals who download private celebrity photos are also doing other crimes or more likely to do crimes as a result of downloading celebrity photos.

Though after listening to the NPR American Life episode about pedophilia, I'm not entirely without sympathy to individuals who are attracted to children but unable to remove that attraction. I wish there were more resources and research and that we understood the brain better to handle that as a society and help those individuals remove that attraction. Of course those who engage in it, especially at the expense of others, are despicable.
But celebrities are finding out about this. Think how mortifying it would be to find out your personal family photos of yourself as a kid or your kid was being used as sexual trading cards for perverts. It's the same for these celebrities. People should hold a great amount of contempt for people that scour the Internet for these photos or shares them.
 
You're not the real Ric Flair.

Actual reaction of the real Ric Flair

1383180808865
 
I didn't knew this continued today, apparently is the Fapture. There's a new picture of Mckyala and someone had ''proof'' that it was legit because the top of it appeared in one of those album screenshots. If that's real then, there's a still dozens of pictures out there yet to be leaked...
 
Let it never be denied that our society still, to this day, has an incredibly possessive and entitled relationship to women's bodies and their sexuality.


Indeed. :(

I feel guilty for having looked, this is an all-around awful invasion of privacy. I can't imagine what it must feel like to be Jennifer Lawrence right about now. Her body is being shown to the world against her will, its like sexual harassment on a global scale. Poor girl

That you acknowledge this is very wonderful. Thank you.

I can't guilt people for curiosity, but if you're coming in here acting like this is no big deal AH WANA C DA NUDEZ BITCHEZ, you should be ashamed.
 
Indeed. :(



That you acknowledge this is very wonderful. Thank you.

I can't guilt people for curiosity, but if you're coming in here acting like this is no big deal AH WANA C DA NUDEZ BITCHEZ, you should be ashamed.

Not ashamed. There's already nudes of me on the internet. No fucks given.
 
When it directly affects themselves. Any other time, not a single fuck is given. That's usually my takeaway, be it right or wrong.



Glad to see you can speak for every person.



Feeding the desirability of said private shit is an endorsement, there's no way around that. You have condoned a personal privacy invasion by encouraging it to continue through the desire to see them. You can justify it however you like to feel better about it, as is your right, but it is still an endorsement nonetheless. Tabloids and gossip aren't really my favorite things, either, but there is still a clear difference between hearsay of an overheard conversation or a photo taken in public and having something stolen in a clear privacy violation. Both are gross in their own way, but let's not pretend they're equal by any stretch.

Arguments like this are like saying you don't condone the sex trade right after you've paid someone for sex. It doesn't work that way.

That analogy might work if I was taking part in the crime (as I would be if I paid a prostitute) of invading someone's privacy or spreading said content across the world. But I am not. I heard about the leaks. Spent about 2 minutes searching and finding enough to satisfy my curiosity.

Am I supposed to feel bad about this? Is what I'm saying supposed to sound like I am making myself feel better somehow? It's pretty much a given that not ever pic on the internet is approved for national consumption. I do not hesitate when watching a vid and wonder if it was uploaded with the express written consent of all parties involved.

I am simply indifferent to it. If I see something in a tabloid about some gossip involving someone I heard of, I might read it. If I overhear a conversation I wasn't meant to hear, I might hold my hand to my ear to listen clearly. If I hear of a photograph showing someone I've heard of, I might look at it. I am actually shocked at the notion that there are people out there that dont do the same thing, and even more shocked people would demonize this behavior!

There is a huge difference between getting the scoop on what someone wrote in their diary and stealing the diary itself
 
Not ashamed. There's already nudes of me on the internet. No fucks given.

I'm sorry, were they released without your consent? To the entire world and are currently being talked about against your will?

Of course you wouldn't be worried about this considering your history of entitlement and self-centeredness. No shock there. Coughcreepcough
 
They are not losing sleep if this all stem from that API issue. Any public API containing sensitive information should never accept direct input of credentials. You need an authenticator that allows the user to authenticate themselves without any application having direct access to their credentials other than the source of the information being requested (in this case, Apple).

I don't know what you are trying to say here. As far as I can tell you are confusing direct client API access (the issue at hand here) with 3rd party API access via delegated API key (not the issue at hand here).

The 'losing sleep' bit was because there are other organizations than Apple with dogs in this hunt. If you think your iCloud uploads only ever touch Apple servers, I got some bad news for you.
 
If Sony had to pay that amount of money for SEN hack I cannot imagine the quantity Apple will do.

Assuming this came from iCloud and used that brute force script, I doubt Apple has any liability. For one thing Apple's security wasn't compromised, and secondly because the accounts must have been using weak passwords to be vulnerable to a brute force attack in the first place, which Apple's own guidelines tell users not to do. A service provider isn't liable if someone guesses your password.
 
Some are acting like this will be the downfall of Apple. In eight days the only thing the media will care about involving Apple is their media event.
 
Status
Not open for further replies.
Top Bottom