Apple has patched an iCloud vulnerability that let hackers repeatedly attempt different passwords without the account locking down, making it possible to access any account with enough tries.
The hacking tool, called iDict, was released New Year’s Day by a user named Pr0x13, who tweeted the following day that iDict had been patched, Business Insider reports.
iDict worked by running through a long list of commonly used passwords, a type of hack Apple normally blocks by locking accounts after the wrong password is entered a certain number of times. Its creator claimed iDict could bypass even security questions and two-factor authentication:
iCloud has been under scrutiny after several celebrities’ accounts were breached last year. Apple said that hack was a targeted attack, and not the result of a vulnerability in its cloud storage service.
More Must-Read Stories From TIME
- How an Online Pharmacy Sold Millions Worth Of Dubious COVID-19 Drugs — While Patients Paid the Price
- Why Literally Millions of Americans Are Quitting Their Jobs
- Meet the Women Participating in the Study That Could Change Future of Breast Cancer
- Inside the Battle for the Hearts and Minds of Tomorrow's Business Leaders
- An Innovative Washington Law Aims to Get Foreign-Trained Doctors Back in Hospitals
- Why the Ex-Husband of a Missing Chinese Billionaire Is Risking All to Tell Their Story
- Timothée Chalamet Wants You to Wear Your Heart on Your Sleeve