Threat actor IntelBroker, known for their audacious cyberattacks, has emerged once again, claiming responsibility for a data breach on Apple’s website. The TA reportedly obtained access to the internal source code of three popular tools on Apple.com. This revelation follows closely on the heels of IntelBroker’s claim of orchestrating a data breach on another tech giant, Advanced Micro Devices (AMD).
According to available information, IntelBroker purportedly breached Apple’s security in June 2024 and acquired the internal source code of three widely used tools on Apple.com – AppleConnect-SSO, Apple-HWE-Confluence-Advanced, and AppleMacroPlugin. The TA posted this information on BreachForums, a platform notorious for trading stolen data and hacking tools.
AppleConnect is Apple’s Single Sign-On (SSO) and authentication system, enabling users to access specific applications within Apple’s network. Apple-HWE-Confluence-Advanced is likely utilized for team projects or information sharing within the company, while AppleMacroPlugin may facilitate specific processes internally.
As of now, Apple has not responded to the alleged data breach by IntelBroker or the leaked code. If confirmed, this breach could potentially expose sensitive information crucial to Apple’s operations, compromising internal workflows. Additionally, leaked source code could reveal vulnerabilities and intricacies of these tools.
The Cyber Express reached out to Apple for further details on the purported data breach, but as of publication, no official statement has been issued by the tech giant, leaving the claims unconfirmed.
Given IntelBroker’s history of high-profile cyberattacks, the alleged data breach at Apple holds significant implications. The threat actor has previously targeted several organizations, including AMD, European Union’s law enforcement agency Europol, Panda Buy, Home Depot, General Electric, US Citizenship and Immigration Services (USCIS), and Facebook Marketplace.
While Apple boasts robust security measures and prioritizes user privacy, past incidents have shown vulnerabilities in its products. In December 2023, Apple released security updates to address vulnerabilities across various products, emphasizing the importance of updating software to mitigate risks. Additionally, a state-sponsored attack targeting Apple iOS devices in India in November 2023 underscored the ongoing threat of cyberattacks.
If IntelBroker’s claims are validated, Apple may need to implement measures to mitigate potential damage, such as patching vulnerabilities and enhancing internal security protocols. While the reports remain unconfirmed, they serve as a reminder of the evolving cyber threat landscape, urging tech companies to remain vigilant against determined attackers.
Users are advised to stay alert for phishing attempts or malware that could exploit alleged vulnerabilities. Maintaining updated software and practicing good cyber hygiene are essential for safeguarding online security in light of potential threats.