A UK-based security researcher has claimed responsibility for Apple's (NASDAQ:AAPL) Dev Center hack, saying that he discovered a bug in the company's website for third-party developers, which allowed him to access 73 user accounts.
The security researcher, who goes by the name of Ibrahim Balic, left a comment on an article from TechCrunch about the bug in question, saying that he informed Apple about the vulnerability by emailing them, hours after which the company yanked the website offline, on Thursday, without responding to him.
“4 hours later from my final report Apple developer portal gas (sic) closed down and you know it still is. I have emailed and asked if I am putting them in any difficulty so that I can give a break to my research. I have not gotten any respond (sic) to this,” Balic wrote in the comments section of the TechCrunch website.
“I have been waiting since then for them to contact me, and today I'm reading news saying that they have been attacked and hacked… I'm not feeling very happy with what I read and a bit irritated, as I did not done this research to harm or damage.”
Balic, who claimed to have found 13 bugs in Apple’s services, said he has access to more than 100,000 user details, which he has not disclosed to anyone because his intention was to report the bug with proof, and not to hack.
"I didn't attempt to publish or have not shared this situation with anybody else," Balic wrote, and posted a video, providing details of his work:
Apple’s Dev Centers within its developer website have remained offline since Thursday, an anomaly for which the company blamed an unidentified “intruder,” who the company said tried to gain access to personal information of the company’s registered developers.
The hack affected only Apple’s developer accounts, while standard iTunes accounts remained unharmed and users’ credit information was not compromised, an Apple representative told TechCrunch.