{"id":11384,"date":"2014-09-02T23:50:18","date_gmt":"2014-09-02T23:50:18","guid":{"rendered":"http:\/\/www.cloudcomputing-news.net\/news\/2014\/sep\/03\/nude-celebrity-photo-leaks-cloud-expert-calls-common-sense-approach\/"},"modified":"2014-09-02T23:50:18","modified_gmt":"2014-09-02T23:50:18","slug":"nude-celebrity-photo-leaks-cloud-expert-calls-for-common-sense-approach","status":"publish","type":"post","link":"https:\/\/icloud.pe\/blog\/nude-celebrity-photo-leaks-cloud-expert-calls-for-common-sense-approach\/","title":{"rendered":"Nude celebrity photo leaks: Cloud expert calls for common sense approach"},"content":{"rendered":"<p>After news broke of a series of leaked photos of female celebrities <a href=\"http:\/\/www.cloudcomputing-news.net\/news\/2014\/sep\/01\/4chan-user-reportedly-hacks-icloud-nude-celeb-pics-google-strengthens-security\/\">on Monday morning<\/a>, there have been a series of developments &ndash; with one expert calling for a common sense approach to cloud data.<\/p>\n<p>Ivan Harris, cloud services development director at Eduserv, explained that &ldquo;things will happen&rdquo; despite the best laid plans.<\/p>\n<p>&ldquo;Nothing is 100% secure,&rdquo; he told <em>CloudTech<\/em>. &ldquo;What you have to do is make best efforts and put the appropriate controls in place.<\/p>\n<p>&ldquo;More often than not it&rsquo;s not the infrastructure that breaks down, or the security of the infrastructure. It&rsquo;s normally people closer to the operations who leaks that information.&rdquo;<\/p>\n<p>For Harris, who has worked in software for over 30 years, it&rsquo;s nothing he hasn&rsquo;t seen before. With various opinion articles hitting the stands speculating over the security of the cloud, he was quick to point out the advantages, and call out the scaremongers.<\/p>\n<p>&ldquo;You can&rsquo;t govern for absolutely everything,&rdquo; he said. &ldquo;Everything&rsquo;s about risk appetite and balancing the cost of protecting the confidentiality of an asset versus the likelihood of that asset being compromised.<\/p>\n<p>&ldquo;It&rsquo;s always a balancing act to be done; however, I would say that cloud services are inherently more secure than non-cloud alternatives.<\/p>\n<p>&ldquo;It&rsquo;s just as probable that information could have been found on a CD that had been dropped in a bin, or somebody&rsquo;s laptop that they&rsquo;d end-of-lifed and put out to be scrapped.&rdquo;<\/p>\n<p>So is it a matter of education for users? Is it a case of knowing the cloud isn&rsquo;t infallible?<\/p>\n<p>&ldquo;I think that for general cloud services, you have to make the assumption that the information could leak one way or another,&rdquo; said Harris.<\/p>\n<p>&ldquo;It could just be user error,&rdquo; he added. &ldquo;You think you&rsquo;re applying the right settings to make your information secure, but you&rsquo;re not.<\/p>\n<p>&ldquo;So I think it is a matter of making people security conscious. Don&rsquo;t assume that things are secure.&rdquo;<\/p>\n<p>This is all too salient now. <a href=\"http:\/\/www.independent.co.uk\/life-style\/gadgets-and-tech\/is-apples-icloud-safe-after-leak-of-jennifer-lawrence-and-other-celebrities-nude-photos-9703142.html\">According to the Independent<\/a> Jennifer Lawrence, who has unwittingly become the spearhead of this leak, told a reporter: &ldquo;My iCloud keeps telling me to back it up, and I&rsquo;m like, I don&rsquo;t know how to back you up. Do it yourself.&rdquo;<\/p>\n<p>Even though the source of the leaks was originally thought of as being from Apple&rsquo;s iCloud, according to security experts there is evidence <a href=\"https:\/\/twitter.com\/ashk4n\/status\/507027826705313793\">that Dropbox was also used<\/a>.<\/p>\n<p>Rumours persisted that the hackers were able to find an exploit in the Find My iPhone API to breach the iCloud accounts, although this was something the Cupertino firm denied <a href=\"http:\/\/www.apple.com\/pr\/library\/2014\/09\/02Apple-Media-Advisory.html\">in an official statement<\/a>.<\/p>\n<p>&ldquo;After more than 40 hours of investigation, we have discovered that certain celebrity accounts were compromised by a very targeted attack on user names, passwords and security questions, a practice that has become all too common on the Internet,&rdquo; the statement read.<\/p>\n<p>&ldquo;None of the cases we have investigated has resulted from any breach in any of Apple&rsquo;s systems including iCloud or Find My iPhone.<\/p>\n<p>&ldquo;We are continuing to work with law enforcement to help identify the criminals involved.&rdquo;<\/p>\n<p>Apple closed the statement by recommending users employ strong passwords and two-factor authentication. But as Graham Cluley <a href=\"http:\/\/www.intego.com\/mac-security-blog\/did-jennifer-lawrences-naked-photos-leak-out-because-she-told-the-truth\/\">noted in a post for Intego<\/a>, this might be an issue for celebrities.<\/p>\n<p>With security questions such as asking for your mother&rsquo;s maiden name, or your first pet, the average user would be assured in having that information to themselves. But for celebrities, whose minutiae and humdrum remarks are splashed on a variety of sources, it could become a goldmine for hackers.<\/p>\n<p>For Harris, the leaks brought a series of regularly seen characters to the surface.<\/p>\n<p>&ldquo;I think some common sense has to apply, and there&rsquo;ll always be the scaremongers,&rdquo; he said. &ldquo;As technology has evolved, there are always inflection points where technology advances and there are always the naysayers who have something negative to say about it.&rdquo;<\/p>\n<p>As for perceptions on the cloud itself, we like the analogy security expert <a href=\"http:\/\/www.bloomberg.com\/video\/cloud-computing-doesn-t-really-exist-samani-2D7BYBwYRLqHsnU7bwvQWw.html\">Raj Samani told Bloomberg:<\/a> just think of the data as being on someone else&rsquo;s computer.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>After news broke of a series of leaked photos of female celebrities on Monday morning, there have been a series of developments &ndash; with one expert calling for a common sense approach to cloud data.<br \/>\nIvan Harris, cloud services development director &#8230;<\/p>\n","protected":false},"author":50,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[],"tags":[],"class_list":["post-11384","post","type-post","status-publish","format-standard","hentry"],"_links":{"self":[{"href":"https:\/\/icloud.pe\/blog\/wp-json\/wp\/v2\/posts\/11384","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/icloud.pe\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/icloud.pe\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/icloud.pe\/blog\/wp-json\/wp\/v2\/users\/50"}],"replies":[{"embeddable":true,"href":"https:\/\/icloud.pe\/blog\/wp-json\/wp\/v2\/comments?post=11384"}],"version-history":[{"count":0,"href":"https:\/\/icloud.pe\/blog\/wp-json\/wp\/v2\/posts\/11384\/revisions"}],"wp:attachment":[{"href":"https:\/\/icloud.pe\/blog\/wp-json\/wp\/v2\/media?parent=11384"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/icloud.pe\/blog\/wp-json\/wp\/v2\/categories?post=11384"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/icloud.pe\/blog\/wp-json\/wp\/v2\/tags?post=11384"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}