A developer has created a solution that can be used to activate iCloud
password. It’s called the ‘iDicts’ tool. It utilizes an exploit in
Apple’s security to bypass the restrictions.
On the Github page of iDict, a user name ‘Pr013’ sated the exploit that was behind this tool was ‘painfully obvious’ and it was just a matter of time before developers started using it to gain access to iCloud accounts.
Apple implemented several ways to prevent criminals from developing its iCloud service. The company stopped people from guessing passwords again and again by putting an end to "brute force" attacks. Then Apple also enabled users to verify login attempts with the aspect of two-factor authentication using their smartphones. But iDict has been reported to bypass those security implementations.
If iDict does indeed work as it has been reported, there’s very little an iCloud account owner can do to protect his/her account. The tool wants users to enter the email address related to the iCloud account before anyone tries to gain access. So a way to make your iCloud account before secure is to use an email that hasn’t been shared online.
The iDicts script must be hosted on your hosting or localhost using Xampp server. You can easily download the iCloud activate script & follow the installation guide on HERE.
Moving on, there’s a buzz about why the developing tool was released in the first place. When researchers uncover an exploit in a software, they usually report privately to the vulnerable company to prevent widespread use by developer.
This is the same service that developer exploited last year to leak naked images of hundreds of online celebrities. Stars like Kate Upton and Jennifer Lawrence had their iCloud accounts compromised when developer bypassed Apple’s security questions. The company later bumped security to prevent access to accounts.
On the Github page of iDict, a user name ‘Pr013’ sated the exploit that was behind this tool was ‘painfully obvious’ and it was just a matter of time before developers started using it to gain access to iCloud accounts.
The description of the iCloud activation tool says the following:
"100% working iCloud Apple ID dictionary attack that bypasses account lockout restrictions and secondary authentication on any account." While there’s no information that iDicits is indeed functioning, users on Reddit and Twitter have claimed to use the tool and report that is works well.Apple implemented several ways to prevent criminals from developing its iCloud service. The company stopped people from guessing passwords again and again by putting an end to "brute force" attacks. Then Apple also enabled users to verify login attempts with the aspect of two-factor authentication using their smartphones. But iDict has been reported to bypass those security implementations.
If iDict does indeed work as it has been reported, there’s very little an iCloud account owner can do to protect his/her account. The tool wants users to enter the email address related to the iCloud account before anyone tries to gain access. So a way to make your iCloud account before secure is to use an email that hasn’t been shared online.
How to use the tool to Reactivate iCloud Password
The tool use a list with 500 most used passwords to activate the iCloud account.The iDicts script must be hosted on your hosting or localhost using Xampp server. You can easily download the iCloud activate script & follow the installation guide on HERE.
Moving on, there’s a buzz about why the developing tool was released in the first place. When researchers uncover an exploit in a software, they usually report privately to the vulnerable company to prevent widespread use by developer.
This is the same service that developer exploited last year to leak naked images of hundreds of online celebrities. Stars like Kate Upton and Jennifer Lawrence had their iCloud accounts compromised when developer bypassed Apple’s security questions. The company later bumped security to prevent access to accounts.
No comments:
Post a Comment