Skip Navigation
NPR News

Celebrity Photo Leak Puts Spotlight On The Cloud, And Security

Sep 2, 2014

Share this


The FBI and Apple are looking into how private photos of Jennifer Lawrence and other celebrities were stolen, in an apparent breach of security that is raising new questions about storing personal information online.

"This is a flagrant violation of privacy," Lawrence's spokeswoman said Sunday, after nude images of the actress and others began to emerge online. Some of the celebrities have denied the photos are of them; others, such as Mary Elizabeth Winstead, say they deleted the images long ago.

Lawrence and Winstead are among dozens of famous women who seem to have been targeted by a systematic hacking job that was announced by a message on the online forum 4Chan on Sunday.

The people behind the scheme say they have more images and video to offer, and as Ars Technica notes, voyeurism wasn't the hackers' only objective: people who said they could provide the images on 4Chan demanded money in exchange, "with one providing a Hotmail address associated with a PayPal account, and another seeking contributions to a Bitcoin wallet."

The hackers are suspected of downloading the images from cloud storage services such as Apple's iCloud, which automatically uploads and stores media files from smartphones and other electronic devices. The thieves were able to access personal accounts by exploiting a security flaw in another Apple service, according to reports by several tech news sites.

From The Verge:

"Though it hasn't yet been confirmed that the pictures came from iCloud accounts, reports have speculated that the hackers used a recent tool called iBrute, which can repeatedly try different combinations of passwords on Apple's Find My iPhone service until one of them works. Once Find My iPhone is breached, it is possible to access iCloud passwords and view images and other data stored in a user's iCloud account. Apple had previously allowed an unlimited number of password attempts on the Find My iPhone service, but it has since limited it to five attempts, making the iBrute tool ineffective."

"We take user privacy very seriously and are actively investigating this report," says Apple spokeswoman Nat Kerris.

Other questions raised by the stolen photos center on how difficult it is to delete images and video that are stored on the far-flung servers that make up the cloud. In most cases, deleting an image from a device doesn't also delete it from the cloud, which requires a separate step.

And several security experts note that for now at least, most cloud backup systems don't make it easy for users to assign different privacy levels to different files. The safest route, many say, is to disable any automatic cloud services that could store sensitive images or data online — and to remember that you lose control over anything you email or text.

Security experts also say it's dangerous to click on any link that promises to show the leaked celebrity photos, because they've "been put on websites that are loaded with malware," analyst Carmi Levy tells CTV.

The photo leak has renewed some of the discussions of last summer, when it was revealed that government spy agencies could easily access massive amounts of data being held in the cloud by large tech companies.

Those revelations sparked an editorial in The New York Times, in which Vikas Bajaj wrote that many of us have "ceded our privacy" by moving toward cloud-based storage, and "it might be incredibly hard, if not impossible, to regain what we have given up."

To explain his point, Bajaj offered this contrast:

"While moving house recently, I came across a box of letters I had received in high school and college, some more than 20 years old. Other people cannot see those letters unless I let them, a court orders that I divulge their contents or they are physically stolen. But I can't say the same about the nine-year-old messages in my Gmail account. I might think those messages are confidential just as I might hope that my private Facebook posts are, well, private. But in reality they aren't and never were."

Copyright 2014 NPR. To see more, visit http://www.npr.org/.

Missing some content? Check the source: NPR
Copyright(c) 2014, NPR

After Foley's Death, Former War Reporter Says It's Not Worth The Risk

Sep 2, 2014 (Here & Now / WBUR-FM)

Hear this

This text will be replaced
Launch in player

Share this


War reporting is dangerous. We were reminded of that last month, when the Islamic State or ISIS, decapitated journalist James Foley, and then released a video of it.

One might reasonably ask: Is the job of chronicling war worth the risk? For one reporter, the answer is that it would be if more people paid attention to it. But they don’t. So it’s not.

This is what moved freelancer Tom A. Peter to write about in the New Republic following Foley’s death. Peter covered the Middle East and Afghanistan for seven years, and now he’s describing his disillusionment with the job.

Guest

  • Tom A. Peter, freelance journalist who covered the Middle East and Afghanistan for seven years. He currently writes about border security and immigration. He tweets @TomAPeter.
Copyright 2014 WBUR-FM. To see more, visit http://www.wbur.org.

Missing some content? Check the source: NPR
Copyright(c) 2014, NPR
Crow Moses. (Courtesy of the artist)

World Cafe Next: Crow Moses

Sep 2, 2014 (WXPN-FM)

Hear this

This text will be replaced
Launch in player

Share this


Explore this

Reported by

Chicago folk artist Crow Moses is a veteran of sorts in his city's music scene, but the name might not be familiar. That's because is upcoming album, Horse Heaven Hills, is the first title recorded under his own name. The experimental musician previously released albumsas Musikanto — Ghost Pain in 2009 and Sky of Dresses in 2011.

It's no wonder Moses wanted to go by his actual name on Horse Heaven Hills — there are some remarkably strong songs on this record. Listen to two of them in this World Cafe: Next segment.

Copyright 2014 WXPN-FM. To see more, visit http://www.xpn.org/.

Playlist

  • "Mad Horses"
  • "Horse Heaven Hills"

Missing some content? Check the source: NPR
Copyright(c) 2014, NPR

Subway Video Forces Question About How Chinese Treat Strangers

Sep 2, 2014 (Here & Now / WBUR-FM)

Hear this

This text will be replaced
Launch in player

Share this


[Youtube]

When a white foreigner fainted on the subway last month in Shanghai, all of the passengers abroad the train fled the scene, abandoning the fallen man on the ground.

NPR's Frank Langfitt tells Here & Now’s Jeremy Hobson about the growing concern in China about how people there treat strangers, why there’s so much fear to help people and how things might be changing.

Guest

Copyright 2014 WBUR-FM. To see more, visit http://www.wbur.org.

Playlist

  • "Mad Horses"
  • "Horse Heaven Hills"

Missing some content? Check the source: NPR
Copyright(c) 2014, NPR

The Girl With Three Biological Parents

Sep 2, 2014 (Here & Now / WBUR-FM)

Hear this

Launch in player

Share this


The United Kingdom could become the first country in the world to allow a scientific procedure that lets children be born with the DNA of three people.

Politicians there are holding their first debate on it today, and will vote on whether to legalize the technique in the coming months.

Scientists claim the procedure will eliminate debilitating genetic diseases, but it would also mean changing their human genetic code forever.

As the BBC’s science correspondent Rebecca Morelle reports, a handful of people have already been born this way.

Note: This BBC interview can be heard in the Here & Now podcast or with the WBUR app.

Reporter

  • Rebecca Morelle, global science correspondent for BBC News. She tweets @rebeccamorelle.
Copyright 2014 WBUR-FM. To see more, visit http://www.wbur.org.

Playlist

  • "Mad Horses"
  • "Horse Heaven Hills"

Missing some content? Check the source: NPR
Copyright(c) 2014, NPR

Visitor comments

on:

NCPR is supported by:

This is a Visitor-Supported website.