Apple admit that iCloud has been compromised
Apple have 'fessed up about iCloud accounts being compromised by fake log-in pages. This follows an incident wherein Chinese users' account names and passwords were requested by suspect looking web pages.
After all that celebrity nude action a couple of weeks ago, Apple came up with a two-password verification system to try and increase security.
Alas, reports of organised password phishing syndicates harvesting user information via fake iCloud pages emerged, and Apple had to come clean and say it's a thing.
A statement released on Apple’s support page has confirmed that these phishers were stealing accounts and passwords, but that remained the dimensions of it. There was no further information as to when these happenings occurred or the severity of them.
Apple have helpfully told users to only use sites if there's a padlock handy. On the site's address bar, not around your neck.
They said: "We’re aware of intermittent organised network attacks using insecure certificates to obtain user information, and we take this very seriously. These attacks don't compromise iCloud servers, and they don't impact iCloud sign in on iOS devices or Macs running OS X Yosemite using the Safari browser."
"The iCloud website is protected with a digital certificate. Users should never enter their Apple ID or password into a website that presents a certificate warning."
Last month, Apple chief executive Tim Cook admitted that Apple could do more to inform users how to make their iCloud accounts more secure, but was too pre-occupied with flogging new tat than being helpful.