China has apparently hit Apple’s iCloud and Windows Live accounts and captured information after users were automatically redirected to spoofed login pages.
The attack coincides with the China-wide release of the newest iPhone, and the redirection is effected at the Great Firewall level. According to the Greatfire blog, the man in the middle attack may be related to the increased security aspects of Apple’s new iPhone.
“When details of the new iPhone were announced, we felt that perhaps that the Chinese authorities would not allow the phone to be sold on the mainland. Ironically, Apple increased the encryption aspects on the phone allegedly to prevent snooping from the NSA. However, this increased encryption would also prevent the Chinese authorities from snooping on Apple user data,” it said
“This MITM attack may indicate that there is at least some conflict between the Chinese authorities and Apple over some of the features on the new phone.”
VIEW FULL STORY