Apple has reportedly been the target of a data breach in which a hacker stole the source code of its internal tools. A group of threat actors known as ‘IntelBroker’ has claimed responsibility for the theft of the source code of three internal tools widely used by the tech giant. IntelBroker reportedly released the details of the breach on a dark web forum, weeks after the hacker group also claimed to have hacked AMD’s website.
According to a after on X (formerly known as Twitter) by Dark Web Informer, IntelBroker hacked and stole the source code of three internal tools used by Apple employees: AppleConnect-SSO, Apple-HWE-Confluence-Advanced, and AppleMacroPlugin.
While there is no information on two of these three tools, a 9to5Mac report reveals that AppleConnect SSO is an authentication system used by Apple employees. It gives employees access to specific apps within Apple’s network and is designed to integrate with the company’s Directory Services database.
According to the publication, Apple employees reportedly used the system to securely access the company’s internal resources. The tool is also said to be integrated into the Concierge app, which is used by employees in Apple Stores.
The dark web tracker shared a screenshot of the dark web forum BreachForums, where the hacking group said in a post: “I am releasing the internal source code of three of Apple’s most widely used tools for their internal site, thanks for reading and enjoy.” IntelBroker did not share any other details about the breach. It is also unclear whether the source code is being offered for free or if it is being sold by the group.
Interestingly, posters on the dark web often claim to have hacked the databases of major tech companies in an attempt to sell fraudulent data and make a quick buck. It’s hard to say whether the Apple hack is one of those cases, or whether the company has truly suffered a cyberattack. Gadgets 360 was unable to verify these claims. We have reached out to Apple for comment on the story and will update this article if we hear back.
Separately, a BleepingComputer report reveals that the same threat actor also claimed to have stolen AMD’s employee information, financial documents and confidential information after hacking the company’s website. AMD has now told the publication that it is investigating the claim.