Jailbreak tweaks have allegedly stolen 220,000 iCloud email addresses and passwords, according to the wooyun.org security site.
The security alert was spotted by Reddit user mahmoodma who said, "So this was announced by a China security website WooYun (it means Black cloud in Chinese based on sound) earlier on their Weibo, and it is basically telling that there are some shady tweaks that have back-doors is stealing Jailbreak user's iCloud account and password to a remote server, which so far there are roughly 220 thousand accounts has been leaked. They haven't announce that who stole it and what for, but as far as we know that, if they hack into our iCloud accounts, they can have access to our mails, photos or even private stuff."
Screenshots posted to Weibo allegedly show the list of leaked accounts. WooYun says it's notified Apple and is awaiting a response.
If you've installed tweaks from default repositories you are probably safe; however, tweaks from third party repos and pirated tweaks or apps may put your information at risk. As usual we recommend against installing those.
Would you like to be notified when someone replies or adds a new comment?
Yes (All Threads)
Yes (This Thread Only)
No
Notifications
Would you like to be notified when we post a new Apple news article or tutorial?
Yes
No
Comments (22)
Comments are closed for this article.
0
vanimox - August 28, 2015 at 8:05pm
Since reading this I have enabled 2FA on my account.
1
flawed logic - August 27, 2015 at 6:13pm
Hmmm, so hackers can get into only jailbroken phones?? I'm assuming that all the celebrities that had their icloud pictures displayed online had jailbroken phones right? I mean that's the only way for a hacker to get your personal information right?
0
Henry - August 27, 2015 at 6:15pm
Your logic is indeed flawed.
0
Meeee - August 28, 2015 at 1:50pm
I believe their iCloud accounts were hacked because of simple passwords with brute force attack
1
Scratch ahold - August 27, 2015 at 5:41pm
Everyone jailbreaks for different reasons. It used to be for unlocking your iPhone to another carrier by flashing the baseband and adding video recording ability long ago. Those are features that aren't needed anymore, so I agree that most jailbreakers do so with piracy in mind. I'm not judging anyone. People will be people, and people will do what they do. I'm only here trying to help. If you do jailbreaking your device, and want to add back some of the security you lost when you did so, download the terminal app, and type the following with out quotations, and hit enter after each command enclosed by quotation marks. "su root" "alpine" "passwd". Now you will be prompted to enter a new root password for your device twice, as the default to every iOS device is alpine. This doesn't give back all of your security, but it does give back a large portion of it.
0
The iDevice Pro - August 27, 2015 at 5:43pm
You beat me to it, dude. I was about to recommend the same thing. Good advice!
0
AppleMan12 - August 27, 2015 at 4:24pm
Well,if you are stupid enough to trust your device and therefore personal data to every hacking group that comes and goes,you kinda deserve it.Just remember,NOTHING in life is free,and jailbreak isn't either.Everything has a cost,skilled hackers would not work for you for free,they have their interests too.
Heck,they don't even need to code viruses anymore as people willingly hack their own devices.
The biggest problem with jailbreaking is that it disables the "sandboxing" feature of iOS, a key part of the operating system's security architecture.
It's like giving the keys of the house and vault to the gardener. (Well,worse,as you get to know the gardener,and this will never happen with hackers).
0
Bill Gates - August 27, 2015 at 2:01am
even if they uses our email addresses, we will get a notification from apple that someone has signed in from your apple id or something.
0
lemon4611 - August 27, 2015 at 12:18am
Is jailbreaking essentially stealing, and does it leave you vulnerable to being stolen from? This seems like a major risk.
0
AppleGuy299 - August 27, 2015 at 12:39am
Jail breakers never stole anything.
0
Techsticles - August 27, 2015 at 12:55am
Jailbreaking isn't stealing. It's tweaking.
I have weather, appointments and reminders on my lock screen, notification icons in my status bar and my notifications bar doesn't block the whole top of my phone.
Why are you on this site if you don't jailbreak?
0
Techsticles - August 27, 2015 at 1:27am
Again. Jailbreaking does not mean pirating or stealing. It means opening your phone to enhancements, mostly to iOS itself.
I use a tweak that disables the AirPlane Mode button in Control Center while the phone is locked.
Why does apple allow thieves to turn on AirPlane mode? It makes tracking your phone impossible if it's stolen.
I can also change / rearrange all of the buttons in Control Center. Top and bottom. It's kind of crazy that Apple doesn't allow this.
0
Techsticles - August 27, 2015 at 2:24am
You don't understand Jailbreaking or what QED means.
I don't believe it's so easy to pirate iOS software these days and the Jailbreak risks are minor and the instability almost non-existant. Most user information has been stolen by apps Apple approved to the app store. Ever wonder why now every app now asks for access to your contacts? Because before every app just had the access without your permission. I do not install apps from the App Store or from Cydia I have not researched.
No one is forcing you to Jailbreak but thank you for taking the time to come here and call us all thieves.
I really do not like iOS out of the box. It has gotten much better over the last few versions but there are still things that are a bit annoying.
These are the tweaks I have installed. Some are paid for. Others are free.
CallConnect: Vibes when a call is connected.
Copi: Contact photos for phone/recent/contacts and Messages.
f.lux: Warms the screen after sunset so your eyes don't hurt. Available for the Mac as well
LockInfo 8: Weather, Calendar, Reminder and more on your lock screen
MuteIcon: Mute icon in the status bar.
Polus: Customize Control Center.
PowerColor: Change the colors of the battery.
Protean: Customize the status bar with notification icons for different apps.
SendDelay: Adds a delay to sending messages so you can cancel after pressing send.
ShowCase: shows lowercase keyboard and uppercase on shift.
SprintBoard: Swipe at the bottom of the screen to move through homescreens quickly.
TinyBar: Scrolls notifications so they are the size of the status bar.
TypeStatus: Shows typing and read icon in the status bar for iMessages.
Those are the good ones.
0
GenesisDH - August 27, 2015 at 3:42am
Let's see, allowing the use of a GV account on one's native Messaging app, playing Videos and multitasking without having iOS 9 (these tweaks were *stolen* by Apple for iOS9), and the ability to do all sorts of tasks by a simple double tap on an icon or connecting to a wifi network, etc.
0
GenesisDH - August 27, 2015 at 3:43am
You really don't understand that most jail breakers use it to enhance the iOS UX, not pirate anything.
0
GenesisDH - August 27, 2015 at 3:45am
And you fail to mention that there are ways to pirate apps *without jailbreaking* that really makes your point less valid.
0
omg - August 27, 2015 at 8:04am
We still have ppls who think jailbreaking == stealing.......
0
Kornmehl - August 27, 2015 at 1:19pm
Probably because almost all people who jailbreak do it so that they can pirate. If you jailbreak, people will assume that you are a pirate; that is the reality. So if you really don't want people to consider you a pirate, you should not jailbreak.
0
techsticles - August 30, 2015 at 2:50am
Only one of us thinks Jailbreaking is stealing.
I don't install pirated software and I don't install shady tweaks.
My name isn't on any public lists.
0
Bryand - August 26, 2015 at 10:30pm
Is the list publicly
0
GenesisDH - August 27, 2015 at 3:35am
Not currently.
0
Omar - August 26, 2015 at 9:35pm
this so possible, I use an ipad, and I never wanted to jailbreak it. It's a normal ipad don't care about jailbreak. And I bought an Chinese android lol, and the only root available is in Chinese, I ended up with 4 different malware according to several antivirus for Android, I didn't find out what the malware could do. So I managed to remove the Chinese and installed a more reliable supersu. Now everything is cool.
![Apple Reports Q1 FY26 Earnings: $143.8 Billion in Revenue, $42.1 Billion in Net Income [Chart]](/images/news/99781/99781/99781-160.jpg "Apple Reports Q1 FY26 Earnings: $143.8 Billion in Revenue, $42.1 Billion in Net Income [Chart]")
![Tony Fadell Slams 'AI-First' Hype, Calls Apple Vision Pro an 'Abject Failure' [Video]](/images/news/99779/99779/99779-160.jpg "Tony Fadell Slams 'AI-First' Hype, Calls Apple Vision Pro an 'Abject Failure' [Video]")
![AirPods Pro 3 Return to All-Time Low Price of $199 [Deal]](/images/news/99752/99752/99752-160.jpg "AirPods Pro 3 Return to All-Time Low Price of $199 [Deal]")
![Apple's 13-Inch M5 iPad Pro (Silver) Hits New All-Time Low at $1,149.99 [Deal]](/images/news/99729/99729/99729-160.jpg "Apple's 13-Inch M5 iPad Pro (Silver) Hits New All-Time Low at $1,149.99 [Deal]")
![Apple's 13-Inch M5 iPad Pro (1TB) Hits New All-Time Low at $1,706 [Deal]](/images/news/99716/99716/99716-160.jpg "Apple's 13-Inch M5 iPad Pro (1TB) Hits New All-Time Low at $1,706 [Deal]")
![Apple Pro Display XDR Drops to $3,999 With Massive $1,000 Discount [Deal]](/images/news/99684/99684/99684-160.jpg "Apple Pro Display XDR Drops to $3,999 With Massive $1,000 Discount [Deal]")
