Still a Hack, but Wrong Person

Wednesday, August 21, 2013 @ 01:08 PM gHale


The Apple developer center outage last month was the result of a remote code execution flaw that Apple has since patched.

After the developer center went offline July 18, UK-based researcher Ibrahim Balic believed his penetration testing efforts were the cause. And he admitted it to Apple.

RELATED STORIES
‘Jekyll’ Test Attack Takes Over
Apple Developer Site Back Up
Apple Hit by Developer Site Breach
Mac Malware Hides File Extension

Balic said he was able to get access to some user details after testing one of the bugs and when the developer portal went down just several hours after he made his final report, he felt he was the cause and let the online know about it.

He said he had been doing research on Apple and he reported some 13 bugs to the company.

He is not the culprit, though, as the outage ended up executed via a remote code execution flaw. As it turns out, 7dscan.com and SCANV of knownsec.com reported the issue on the day of the hack, according to Mac Rumors.

Apple has not shared more details about the attack since the initial notice saying that an intruder tried to access personal information of their registered developers.

But, as it took them nearly three weeks to completely overhaul the developer program services and bring them back online, they did give developers an extension to their developer memberships by one month.



Leave a Reply

You must be logged in to post a comment.