Wednesday, 19 January 2011

so my iTunes has been hacked - key logger?


hey everyone,

yesterday received email apple mentioning suspicious activity on account , when logged itunes had near enough of £80 credit had on there stolen!

has logged in , bout 2x applications @ £34.99 each (they mandarin no idea of name) , in app purchases.

have since cancelled debit card , fortunately apple has refunded me money im worried how got password.

have not been 'phised' thing can think of is:

a. brute force attack (i wouldn't think work against apple)
b. apple's server hacked (again seems unlikely never know!
c. have key logger on imac (which worries me most)

how can check if there dodgy on imac. have checked activity log honest wouldn't know anyway! until im convinced computer safe i'm wary typing passwords in here.

else been victim of itunes hacking?

cheers,

tom
 

do access via iphone? friend:

"barcelona, mobile world congress 2012 — last night treated security demonstration. cryptography research director pankaj rohatgi pointed cheap, standard tv antenna @ ipod touch several feet away, running standard rsa encryption operations.
on screen of oscilloscope sound-wave generated custom software showing distinct troughs @ semi-regular intervals. these troughs, , accompanying flattish peaks, represented ones , zeroes of private keys used in every secure communication make today, sucked right ipod. no further cracking required, of private operations can read if in plain text.
how done? electronic noise generated every microchip goes processing duties.
it’s called side-channel attack, , unless software defends against it, every computing device vulnerable. there 1 ray of light, though: hacker needs close. radio-shack-style antenna used rohatgi can sniff patterns few feet away. using more expensive, specially-tuned equipment extend range. not enough remote cracking, enough steal details in largish room.
side-channel attacks work weakness in ecc , rsa private key operations. these @ heart of encryptions ssl connections between , bank’s website, example. when crunch numbers in keys perform encryptions, rsa software typically uses sequence of multiplications only, or multiplications , square operations combined. each of these causes chip running on emit different electrical signal. , these signals show ones , zeros of key, plain see on screen.
measuring signals, can break key instantly. scary. , crack notebook or iphone: they’re same.
how can fixed? software has re-written hide these peaks , troughs, doing math in way doesn’t reveal key through act of processing it. can done individual developers, or can done @ os level. better have apple bake ios, protecting everything.
don’t worry much, though. majority of crypto hacking goes on over internet, sniffing @ transactions make every day. makes feel lot better, right?"
 


Forums Macs Desktops iMac


  • iPhone
  • Mac OS & System Software
  • iPad
  • Apple Watch
  • Notebooks
  • iTunes
  • Apple ID
  • iCloud
  • Desktop Computers
  • Apple Music
  • Professional Applications
  • iPod
  • iWork
  • Apple TV
  • iLife
  • Wireless

No comments:

Post a Comment