Wednesday, 2 April 2025
27.2 C
Singapore
30.6 C
Thailand
21.3 C
Indonesia
27.8 C
Philippines

A hacker claims to have breached Apple days after the AMD hack

Notorious hacker Intelbroker claims to have breached Apple's internal systems, exposing source code, just days after hacking AMD.

Data breaches are becoming increasingly common, but when significant companies like Apple are targeted, serious concerns about the safety of critical data are raised. This week, the infamous cybercriminal known as Intelbroker claimed to have hacked Apple just days after they allegedly breached AMD. Intelbroker has even shared some internal source code on a hacking forum, escalating fears about the potential fallout.

Claims for the breach

Apple has yet to confirm the alleged hack. All the information available now comes from a forum post shared by HackManac on X (formerly Twitter). In this post, Intelbroker claims that they breached Appleโ€™s security, exposing source code for several internal tools, including AppleConnect-SSO and Apple-HWE-Confluence-Advanced. Fortunately, no compromised customer data has been mentioned, which is a slight relief amidst the potential damage.

According to reports from 9to5Mac, AppleConnect-SSO is an internal authentication tool Apple uses. This tool allows employees to access various internal applications securely. It functions similarly to an Apple ID but is used exclusively for internal purposes and does not provide access to email addresses. This tool is integrated into applications used by Apple Store employees, such as Concierge and EasyPay. On the other hand, Apple-HWE-Confluence-Advanced is likely used for internal information sharing.

Potential impact and responses

It is unclear if Intelbroker is attempting to sell the stolen data or if it has been made available for free. Leaking source code for internal tools may take time to impact Apple’s operations significantly. However, if the code ends up in the wrong hands, threat actors could use it to find vulnerabilities and exploit them further.

Apple has yet to confirm the breach or provide details on the extent of the damage, leaving Intelbrokerโ€™s claims uncertain. Nevertheless, considering that the same cybercrime group recently claimed responsibility for hacking AMD, there might be some validity to their assertions. This week, Intelbroker reported that they had obtained plans for future AMD products, as well as customer information and employee details.

AMD’s situation

AMD has acknowledged the data breach but suggested that the situation might not be as dire as it appears. In a statement to Bloomberg, AMD said, “Based on our investigation, we believe a limited amount of information related to specifications used to assemble certain AMD products was accessed on a third-party vendor site. We do not believe this data breach will have a material impact on our business or operations.” Despite this reassurance, concerns about the safety of customer data remain.

In conclusion, while Apple has yet to confirm Intelbrokerโ€™s claims, the potential implications of this breach are significant. If the cybercriminals have accessed sensitive internal tools, it could pose risks to Apple’s internal operations and the security of its systems moving forward.

Hot this week

Microsoft removes Windows 11 loophole for skipping account setup

Microsoft is blocking a well-known workaround that lets you set up Windows 11 without a Microsoft account, enforcing stricter installation rules.

Chinese EV makers urged to expand globally despite tariff challenges

Chinese EV makers are urged to expand globally despite rising tariffs. Industry experts stress the need for overseas production and strategic partnerships.

Sony unveils WF-C710N earbuds with improved battery life and noise cancellation

Sony announces the WF-C710N earbuds, which offer better battery life and noise cancellation, and new colours for the WH-CH720N and WH-CH520 headphones.

China-aligned hacker group FamousSparrow resurfaces in cyberattacks

ESET finds China-linked hacker group FamousSparrow still active with upgraded tools, targeting institutions in the US, Mexico and Honduras.

Android Auto beta now supports full-screen gaming

Android Autoโ€™s latest beta introduces full-screen gaming, allowing you to play Candy Crush Soda Saga and Angry Birds 2 while parked.

Exabeam introduces Nova, an agentic AI that boosts cybersecurity operations

Exabeam unveils Nova, a proactive AI agent that boosts security team productivity and reduces incident investigation time by over 50%.

NUS partners with Microsoft Research Asia to advance AI research and nurture future tech talent

NUS and Microsoft Research Asia partner to boost AI research and develop future computing talent through a joint PhD and industry collaboration.

Tenable reveals privilege escalation flaw in Google Cloud Run

Tenable uncovers a privilege escalation flaw in Google Cloud Run, exposing risks linked to inherited permissions and service interdependencies.

Evento Seguro simplifies insurance access for event organisers in Brazil

Evento Seguro by Chubb makes event insurance easier for Brazilian organisers through a digital platform by Sympla and discovermarket.

Related Articles