Ibrahim Balic breaks silence on hacking Apple developer site

This kind of pen-testing, without previous authorization, is a very risky enterprise if you live in the UK. The Computer Misuse Act 1990 expressly forbids &quot;unauthorised access&quot;. Sections 1-3 of the Act introduced three criminal offences:<p>- unauthorised access to computer material, punishable by 6 months&#x27; imprisonment or a fine &quot;not exceeding level 5 on the standard scale&quot; (currently £5000);<p>- unauthorised access with intent to commit or facilitate commission of further offences, punishable by 6 months&#x2F;maximum fine on summary conviction or 5 years&#x2F;fine on indictment;<p>- unauthorised modification of computer material, subject to the same sentences as section 2 offences.<p>If he had been contracted to pen-test the website by Apple then it would be a different matter.

&gt; I have taken 73 users details (all apple inc workers only) and prove them as an example ...<p>&gt; I have over 100,000+ users details ...<p>&gt; I do not want my name to be in blacklist<p>One would think that 73 compromised Apple employee accounts should be enough to make a point. Why would he take another 100k user accounts hostage?

The fact that the site is still down makes wonder what they&#x27;re doing.<p>Provided that the hacker did report all the security bugs to Apple, one could suppose that it would only require of couple of days to fix the bugs, put the site back online, and start performing a full security audit along with massive code rewrite in parallel.<p>The only reason i see why they would still be offline, is that they instead decided to rewrite some crucial portion of the code from the ground up (which is what the email they sent the other day would suggest). But 1 week in emergency mode for a company like Apple really means rewriting TONS of code...<p>&lt;offtopic&gt; Anyone know the state of Objective-C on the server ? I really like that language now that it has ARC, and i wonder if apple is still using that technology on the server side &lt;&#x2F;offtopic&gt;

With the iOS 7 launch already on a tight schedule this is a disgrace for both Apple and developers trying to renovate their apps.

I love how they just plop in some random comment from &quot;Marco&quot;. Why is he so famous in Mac circles?

The article states that the website is back up but as of now 24&#x2F;07 11:08GMT that is not the case.<p>This is terrible timing for me since I came back from travelling on Thursday and haven&#x27;t been able to get on with working in iOS 7. I really wish Apple were able to provide us with more information on time-scales.

&gt; The site was put back online yesterday.<p>No it&#x27;s not.

I don&#x27;t know what the correct action here has been, but I know as an Apple developer that apple has been acting very irresponsibly, since the first day they opened the app store about any bug reports or generally any developer communications, at least in my experience. And some part of me is happy that they hit their head against a brick wall, although my own day to day biz is disrupted too.

I can&#x27;t trust anyone who spells &#x27;purpose&#x27; as &#x27;porpoise&#x27; even if English isn&#x27;t his first language.

&quot;I don&#x27;t want to be black listed&quot;<p>Not everybody is Edward Snowden...