Highlights
- Hacker IntelBroker claims to leak code for three internal Apple tools.
- Alleged leaked tools include AppleConnect-SSO, Apple-HWE-Confluence-Advanced, and AppleMacroPlugin.
- Tools are reportedly outdated and no longer in active use.
- Recent allegations follow IntelBroker’s claims of an AMD breach in June.
A threat actor claims to have breached Apple and leaked the source code for three internal employee tools.
While Apple has yet to confirm the alleged breach, the hacker known as IntelBroker has a growing reputation on dark web forums which upholds a strong vetting process to weed out scammers peddling fake “leaked data.”
Apple Data Tools Leaked
🚨MAJOR DATA BREACH🚨IntelBroker has allegedly leaked #Apple‘s Internal Tools.
IntelBroker has released the internal source code to 3 of Apple’s commonly used tools for their internal site,
In June 2024, https://t.co/uGXK0plIJe suffered a data breach and lead to the exposure… pic.twitter.com/Nm2cgyUhQ3
— Dark Web Informer (@DarkWebInformer) June 18, 2024
The three tools named in the leak are AppleConnect-SSO, Apple-HWE-Confluence-Advanced, and AppleMacroPlugin.
AppleConnect-SSO allows Apple employees to authenticate and access other internal apps using a gesture-based pattern login instead of a passcode for ease of use.
It’s known to have been implemented in apps like the employee Concierge app used at Apple Stores and the now-discontinued SwitchBoard, though the extent of its use across Apple’s internal systems is unclear.
Little is known about the capabilities of the other two tools – Apple-HWE-Confluence-Advanced and AppleMacroPlugin.
However, Apple-HWE-Confluence-Advanced is also said to be a deprecated employee authentication tool.
🚨MAJOR BREACH🚨IntelBroker is allegedly selling the AMD data breach dated June 2024.
Compromised data: Future AMD products, Spec sheets, employee databases, customer databases, property files, ROMs, source code, firmware and finances.
Employee Database Breached data: User ID… pic.twitter.com/Q2P98zNBQw
— Dark Web Informer (@DarkWebInformer) June 17, 2024
IntelBroker’s post on a hacker forum provides no further details or motives, which is unusual for major breaches where data like source code is typically offered for sale.
AppleInsider has reached out to Apple for clarification on the alleged leak but till now has not received a response.
AMD Involved in a Similar Breach
“AMD, a large computing company, suffered a data breach. Compromised data: Future AMD products, Spec sheets, employee databases, customer databases, property files, ROMs, source code, firmware, and finances,” the threat actor said in a separate post on the illicit forum. In a statement to Reuters, AMD said that it is investigating the claims: “We are working closely with law enforcement officials and a third-party hosting partner to investigate the claim and the significance of the data.”
The claims arrive shortly after IntelBroker made headlines for allegedly selling data stolen from AMD in a June breach, including information on upcoming products, employee/customer databases, and financials.
AMD is currently investigating those claims.
While unconfirmed, the alleged Apple breach would be a blow to the company’s stance on security and privacy if legitimate.
A source familiar with dark web forums told 9to5Mac that most uphold strong vetting processes to prevent scammers selling fake “leaks,” lending some credibility to IntelBroker’s growing reputation.
FAQs
What tools were allegedly leaked by the hacker?
The tools named are AppleConnect-SSO, Apple-HWE-Confluence-Advanced, and AppleMacroPlugin.
What is AppleConnect-SSO?
AppleConnect-SSO is an authentication tool used by Apple employees to access internal apps, though it’s reportedly outdated and not in use for several years.
Has Apple confirmed the breach?
Apple has not confirmed if a breach actually occurred. The claim remains unverified by the company.
Who is the hacker responsible for the alleged leak?
The hacker, known as IntelBroker, posted about the leak on a hacker forum and previously claimed responsibility for a supposed AMD breach.
What are the implications of this alleged leak?
If the breach is confirmed, it could raise concerns about internal security measures. However, the outdated status of the tools might limit the impact.
Also Read: “I thought it was an iPhone”, Android Smartphone Rejected by Thieves in Unusual DC Robbery
Also Read: Turkish Man Steals iPhones Worth $30,000 for Girlfriend’s Car Gift
Join MyMobile WhatsApp Channel
