Many websites of major companies around the world have been attacked lately, some have been exploited, others will be, but it is not surprising to see the Apple company among the companies whose websites have security breaches. A group of hackers he warned in April, the Apple company that in the website dedicated to developers of applications for iOS/Mac OS X there is a vulnerability that could be used in a phishing attack. Since then and until now, Apple has not solved the problem and the hacker group threatens to disclose the vulnerability if Apple does not solve it in the near future.
GN Ethical Hacker Group says it doesn't want the discoveries it makes about vulnerabilities to be used for illegal hacking purposes, but to spur better security in commercial websites. The group says it informed Apple on April 25 about the "issues" it discovered at the developer site. The group says Apple on April 27 acknowledged the receipt of the information, saying, "We take the report of a potential security issue very seriously." But as of yet, YGN Ethical Hacker Group does not believe the main security hole it identified has been fixed.
Although Apple admitted that it received the information from GN, so far no changes have been made to the website dedicated to developers. Through phishing attacks, the login data of application developers can be obtained, and anyone who has them can control what happens with the respective developer's App Store applications. If such an attack were used against the Apple company, I think many people would question the security behind the company's infrastructure.
