Affiliate Disclosure
If you buy through our links, we may get a commission. Read our ethics policy.

China arrests 22 suspects for selling Apple user data on black market

Roger Fingas |

Police in the coastal Chinese province of Zhejiang have arrested 22 Apple distributors, accusing them of reselling iPhone user data to anyone willing to pay.

The people allegedly scoured an internal Apple database for information such as Apple IDs and phone numbers, according to Engadget. Prices for the illicit data ranged from 10 to 180 yuan, or around $1.50 to $26.

Collectively the distributors made about 50 million yuan — $7.36 million — before police intervened. Reports haven't revealed the number of affected accounts and devices, or other important facts, such as whether there were any victims outside of China.

Apple normally prides itself on its privacy and security, which raises questions of how and why the distributors had access to the database. China has long had problems with Apple IDs being sold on the black market — typically, though, these are stolen by hackers, acquired through methods like phishing schemes.

Earlier this year, a group calling itself the "Turkish Crime Family" tried to hold Apple to ransom, claiming it had access to hundreds of millions of Apple accounts, and the ability to wipe iPhones and iPads. While the hackers said they were paid, Apple insisted that its servers hadn't been breached, and that the account information was "obtained from previously compromised third-party services."

7 Comments

ZooMigo 9 Years · 35 comments
About

This should serve as a good reminder. If you have not yet enabled two-factor authentication, do it now. Last week I received messages of two attempts to log into my icloud account. Wasn't me.

bobolicious 10 Years · 1177 comments
About

...does this all route back to the premise of the app store introduced in 10.6...? All data roads lead to Apple...? Live by the sword... MacOS Pro ? owncloud.org ?

MacPro 18 Years · 19845 comments
About

These were Apple distributors?  As in official Apple distributors / dealers?  If so then that's just horrible, people maybe had equipment in for repair?  I'd like to read some more in depth details of just how this took place.

jdgarvin50 13 Years · 51 comments
About

"…how and why the distributors had access to the database." Could that be because the Chinese government requires access to the database to protect itself from criticism? Cook warned the FBI that could happen here if forced to hack iOS for them in the San Bernardino iPhone 5c case.

robertwalter 9 Years · 276 comments
About

ZooMigo said:
This should serve as a good reminder. If you have not yet enabled two-factor authentication, do it now. Last week I received messages of two attempts to log into my icloud account. Wasn't me.

Warning to those w/o 2FA enabled.

I received two different forms of a purported Apple message ("somebody tried to log in" and "we locked your account") last week (one in junk folder the other in inbox). Since I've had 2FA turned on since day 1, I knew these were likely phishing attempts. I checked the sender's domain and it was not apple.com. 

I forward all good spoof mails to:
spam@uce.gov ,
phishing-report@us-cert.gov ,
as well as my email provider (you can google yours.). If the mail involves Apple I add 
reportphishing@apple.com .

Read More on our Forums ->
 

Sponsored Content

article thumbnail

How to stop spam calls and reclaim some sanity on your iPhone

Top Stories

article thumbnail

How Apple's smart home revolution begins in 2025

article thumbnail

AirPods Max four years later: a missed spatial computing opportunity

article thumbnail

Apple says EU interoperability laws pose severe privacy risks

article thumbnail

Don't believe what you see on TikTok - AirDrop doesn't allow thieves to steal your credit card info

article thumbnail

Holiday 2024 MacBook Buyer's Guide — Which Mac laptop you should buy?

article thumbnail

Holiday coupon: save up to $300 on every 14" & 16" MacBook Pro M4