Icloud account just got hacked

Kappy wrote:

Ignore it. Spammers got hold of your email address and are sending out emails spoofing it. Your only recourse is to change your email address which may be more trouble for you than it's worth.

How can spammers save messages in my sent folder then???

It has to do with Apple and its stupid iCloud email which I never use.

Apple have just reset my iCloud password. I changed it previously this morning as soon as I noticed the spam.

Someone in Apple knows something is going on. Please keep your users informed.

David Wilcox.

I fear that Apple won't even acknowledge thisnissue unless it affects a large amount of users or gains some media attention.

I myself just sent a tip to Ars Technica hoping they will pick up the story and do some more digging around for us, because Apple sure does not have a good track record regarding transparency with major issues (antennagate anyone?).

And considering that this could be way bigger regarding the fact that peiple might have been able to geolocate each affected user, view their documents and photos etc. I really think that more attention to this issue is the only way to help break Apple's seal of silence.

I've put some thought into this and I really only see two viable options as tonhow this could have happend on my part :

1. iCloud is (or for a short time was) breached and people were able to take advantage of that

2. Some sort of malicious website visited from an iOS device was able to extract this information due to a flaw in the software somewhere.

If others have suggestions of their own, please share - I think our best bet now is to share our thoughts and maybe together we can uncover some relevant info about how this could happen.

As for me - no more iCloud!

david_on_a_bike:

The headers you posetd who an originating IP address of 202.147.217.223. That IP address is in Japan.

Are you in Japan?

According to whois, that address belongs to Kumamoto Cable Network Corporation. They have an address to report abuse complaints: support@kcn-tv.co.jp

I got hacked too. Happened to me yesterday around 9PM Pacific time. At first I thought maybe iCloud was just down, but then my sister said she got spam from me. Went in, changed my password. At first I couldn't remember if I had another email in there for password resetting, so I tried using the questions, but they had changed! Fortunately the email worked.

Then tonight it happened again. Changed my password again, this time no new sent spam.

The originating IP address I have is: 202.94.157.146

Yep I noticed this as well.

I'm actually in the UK.

My iCloud password has been reset by Apple again.

I'm not going to have time to speak to Apple today as I've got to got to hospital. I'm getting miffed by this :-(

Cheers David

Seems as though My iCloud account got hacked into again as well!!

Could'nt log into icloud.com imessage or facetime with the pwd I JUST CHANGED yesterday... Had to change it again now.

I have been hacked twice today too (after password change that happened again). Have no messages in my SENT folder, only replays from servers which cannot deliver messages. Apple phone support in Russia can't do anything even check logs of SMTP server, they rejected to help me, just said I have to change password or DELETE ACCOUNT (not e-mail at me.com).

I got hit as well. I saw an email come in to one of my other email accounts from my .me account. Sent folder on iCloud.com had a dozen or so spam emails originating FROM me. Password had been reset. So yesterday afternoon I reset my password, cleared out the sent folder and went about resetting the passwords on my iPod, iPad, iPhone and Mac. This morning I went to check my email on my mac and I was unable to communicate with the iCloud servers. The password had been reset AGAIN. No spam in the sent folder this time. So I changed my password AGAIN. This *****. This really, really *****.

***! I am in the same boat....unfortunately, unlike some of the other posters, I do use my me.com email and icloud all the time, and to say this is inconvenient is an understatement. So if I need to change my password on 3 devices everyday, I will crap myself 😟 Am going to Apple Store today to see if they have heard of this...I will probably get a blank stare. Don't have the time to do this!

I had my account comprimised as well. I had two emails in my sent folder (a big F U to the articles lately by CNET and others saying it was email spoofing/spaming) from "ME". I have now changed my password twice and, like others, I'm finding this extremely frustrating. I do not use my iCloud email account but obviously find it essential to linking my data between my devices.

What a PItA!

Same thing here, people replying to spam asking, did you send this? I also have spam in my sent folder.

This is the second time I've had to reset in two days. This most recent time I was totally locked out and had to use my security email to reset everything.

Talked to iChat yday and they acted like they had no clue...

FIX THIS NOW APPLE!!!

I spoke with Apple this morning about our common issue. I have now had my password reset twice by Apple and they did not inform me that they were doing this.. My best guess on what's going on; Some of Apples servers or databases were compromised. Apple probably has been seeing a huge increase of emails from their servers. By resetting our account passwords they can stop the maliciaous emails from being sent from our accounts. I am not sure why they have had to do this repeatedly, but I bet it has to do with this breach in security.. That's my guess. Either way, it would be nice to be informed what's going on, but they won't do that until they have resolved the issue.

Apple has said they will call me back later today with an answer. I will post as soon as I hear back.

The Apple rep that I spoke to on the phone was baffled why my account password was reset by Apple... We will get to the bottom of this...

Mine was also reset twice in the last two days.

15 emails sitting in my sent folder to dozens of recipients from my address book. Very embarrassing, given most of these are business contacts.

We want answers Apple... let us know what's going on.

At least we know that Apple is indirectly acknowledging the problem by resetting passwords. My password has been reset twice by Apple and once by me. I deleted all my contacts in my @me.com account and stopped all services in my other devices until a definite fix has been in-place.

My other email accounts fortunately has not been hijacked, hacked, spammed or compromised.

I wish they have an app for passwords, but then that would be inviting trouble. Our devices are tethered to the world and we know too well that nothing is secure in this arena.