Apple was allegedly targeted in a data breach that resulted in a hacker acquiring the source code of its internal tools. A threat actor organization known as ‘IntelBroker’ has claimed responsibility for stealing the source code for three internal tools routinely used by the IT giant. IntelBroker reportedly uploaded the breach data on a dark web forum, weeks after the hacking group claimed to have penetrated AMD’s website.
According to Dark Web Informer’s post on X (previously known as Twitter), IntelBroker breached and acquired the source code for three internal tools used by Apple employees: AppleConnect-SSO, Apple-HWE-Confluence-Advanced, and AppleMacroPlugin.
While no information is available for two of these three products, a 9to5Mac report reveals that AppleConnect-SSO is an authentication method used by Apple employees. It grants employees access to specific apps on Apple’s network and is intended to interface with the company’s Directory Services database.
According to the publication, Apple employees use the technology to safely access the company’s internal resources. According to reports, the feature is also embedded into the Concierge app, which Apple Store personnel use.
The dark web tracker posted a screenshot from the dark web forum BreachForums, where the hacker group wrote, “I’m releasing the internal source code to three of Apple’s commonly used tools for their internal site, thanks for reading and enjoy.”
Also Read:
IntelBroker did not provide any other information on the breach. It is also unclear whether the source code is being distributed for free or sold by the group.
Notably, dark web users frequently claim to have hacked into major tech companies’ databases to sell false data for a quick profit. It’s difficult to say whether the Apple breach is one of such examples, or if the company was cyberattacked.
