Apple has patched an iCloud vulnerability that let hackers repeatedly attempt different passwords without the account locking down, making it possible to access any account with enough tries.
The hacking tool, called iDict, was released New Year’s Day by a user named Pr0x13, who tweeted the following day that iDict had been patched, Business Insider reports.
iDict worked by running through a long list of commonly used passwords, a type of hack Apple normally blocks by locking accounts after the wrong password is entered a certain number of times. Its creator claimed iDict could bypass even security questions and two-factor authentication:
iCloud has been under scrutiny after several celebrities’ accounts were breached last year. Apple said that hack was a targeted attack, and not the result of a vulnerability in its cloud storage service.
More Must-Reads from TIME
- Cybersecurity Experts Are Sounding the Alarm on DOGE
- Meet the 2025 Women of the Year
- The Harsh Truth About Disability Inclusion
- Why Do More Young Adults Have Cancer?
- Colman Domingo Leads With Radical Love
- How to Get Better at Doing Things Alone
- Michelle Zauner Stares Down the Darkness
Contact us at letters@time.com