iCloud 中國地區轉私人企業雲上貴州第一天,就發生了嚴重資安問題。

大家好,我是蘋果梗,雖然寫了十餘本蘋果相關教學書籍也考過了幾張蘋果證照。但其實是集肥宅與邊緣人於一身的孤單男子。

 

前陣子,大家都知道的,中國地區的 iCloud 服務,確定從 2/28 開始,轉由私人企業外包,這家私人企業叫做「雲上貴州」。當然,雖然轉出去了,但蘋果保證所有的服務以及隱私權,都會跟原本一樣。

但,在中國談隱私,何況還是外包,所有人都知道不安全。

而就在轉到雲上貴州的第一天,就發生了一件慘案,雖然目前這只是個案,不能說整個雲上貴州都有問題,但的確可以看出,雲端不是你100%儲存資料的好地方,尤其在中國。

 

事情的詳細發展在微博,由一位  美國往事1999  po文 

 https://media.weibo.cn/article?id=2309404214301027136108

 

大意是這樣,這位用戶在使用 iCloud 服務時發生一點問題,所以打電話給客服,因為客服的態度發生了爭吵之後,便掛斷了電話,結果客服翻找他的資料,用電話以及email騷擾他,要求加他通信軟體QQ,最後竊取並串改了他的 iCloud 資料,至少包含了他數個 email 的密碼(應為鑰匙圈內資料)。事情發生到現在,蘋果客服還沒給他一個明確的回復。

附上英譯,如果有外國朋友的話可以參考。

iCloud service in China has recently transferred it's operations to a China Private Internet Provider called GCBD , although this decision raised concerns about the privacy security of iCloud users in China, Apple promises that all it's service and privacy settings will not be changed.
No surprisingly, a suspicious serious security issue has occurred after the first day (28Feb2018) of the service transfer.

A Weibo user 1999 posted a story saying his privacy was compromised by the Apple Technical Advisor, here's what happened in a brief summary:

The user 1999 had an argument with the Apple Telephone Service Specialist after experiences some problem when using the iCloud service. After he hang up the phone, the customer service started harass him with his personal mobile phone and email, even request him to friend the service specialist via a China communication software QQ. In the same time, 1999 found that the service specialist had a clear information of his name and phone number. In the end, the service specialist tampered his iCloud and other email password including Hotmail.

User 1999 claimed that he had this case reported to the local police and received a feedback from Apple China, saying the staff involved has been removed from the position. However no further details have been revealed including how much exactly this employee steal their customer's personal information.

The full story was written in Weibo.cn, and we have no idea how long this post will remain open under gradually tense internet environment in China. Therefore we had the entire content screenshotted and pasted in our news letter.

Attachements
a. Apple iCloud service term changed in China 
https://www.apple.com/legal/internet-services/icloud/en/gcbd-terms.html
b. The original post from the China user 1999 (written in simplified chinese)
https://media.weibo.cn/article?id=2309404214301027136108
c. News letter from our website (MacUknow.com)
http://www.macuknow.com/node/77304
d. News letter from other tech media in Taiwan (techbang.com)
https://www.techbang.com/posts/57175-an-apple-user-in-china-has-been-in-an-altercation-with-a-customer-service-officer-and-has-been-icloud-and-threatened-by-theft-of-information

 

由於這則訊息不知道能存活多久(尤其在中國),所以我們已經節圖備份在下方,有興趣看詳情的朋友可以直接往下閱讀。

 

 

 

 

新聞分類: 
蘋果新聞(上方選單分類)

回應 (2)

Randy_Hung's 的頭像
Randy_Hung
says:
發表回應前,請先登入註冊

該是停止使用 iCloud 了嗎?

  • 備份用本機 iTunes
  • 聯絡人改用 Google
  • 照片改用 NAS or Google
  • 行事曆改用 Google
  • Wallet 不要用
  • Keychain 改用 1Password or other

 

netblue's 的頭像
netblue
says:
發表回應前,請先登入註冊

沒有任何雲端可以保證安全...

難保Google哪天也會發生類似事件。