温馨提示:本站仅提供公开网络链接索引服务,不存储、不篡改任何第三方内容,所有内容版权归原作者所有
AI智能索引来源:http://www.ssh.com/blog/apple-hacker-avoids-jail-in-ssh-tunneling-attack
点击访问原文链接

Apple hacker avoids jail in SSH tunneling attack

进入原网站 导航首页
Apple hacker avoids jail in SSH tunneling attack About us Investors Partners Careers Solutions SOLUTIONS Zero Trust Suite Quantum-Safe Cryptography (QSC) SalaX Secure Collaboration Security Risk Assessment, Quantification & Mitigation By Topic Just-in-Time Access Secure vendor access Credentials & Secrets Management Hybrid & multi-cloud access management Interactive tour: Privileged Access in the Cloud M2M connections IT Audits & Compliance Secure file transfer By Industry Managed Service Providers (MSP) Operational Technology (OT) Federal Government Security Products SECURE ACCESS & SECRETS MANAGEMENT SECURE FILE TRANSFER & ENCRYPTION NQX™ quantum-ready encryption Tectia™ SSH Client/Server Tectia™ z/OS SalaX Secure Collaboration Secure Mail 2024 Secure Messaging 2024 SalaX Secure Collaboration Solutions SOLUTIONS PrivX Zero Trust Suite SalaX Secure Collaboration Strong ID-based access with Entra ID & Zero Trust Suite Quantum-Safe Cryptography (QSC) Security Risk Assessment, Quantification & Mitigation Device trust & access and identity verification Identity-based authentication & converged IAM and PAM TOPICS Just-in-Time Access Secure vendor access Credentials & Secrets Management Hybrid & Multi-Cloud Access Management Interactive tour: Privileged Access in the Cloud M2M Connections Management IT Audits & Compliance Secure File Transfer INDUSTRIES Managed Service Providers (MSP) Operational Technology (OT) Federal Government Security Healthcare Data Security OT Security IT/OT convergence of data & systems Zero Trust Access and ZSP Workflow approvals Secure remote access  Secure patch management  OT Compliance Discovery and threat intelligence Phishing-resistant MFA & device trust Products SalaX SECURE COLLABORATION Secure Mail Secure Messaging Secure Sign SalaX Secure Collaboration FQX File Encryptor SECURE ACCESS & SECRETS MANAGEMENT PrivX™ PAM PrivX™ OT Edition PrivX Key Manager SECURE FILE TRANSFER & ENCRYPTION Tectia™ SSH Server Tectia™ SSH Server for IBM z/OS PrivX Desktop NQX™ quantum-safe encryption Services SSH Risk Assessment™ Professional Services Support Contact us Customer cases PrivX Zero Trust PAM Enterprise Key Management UKM Tectia SFTP for servers & mainframes SSH Secure Collaboration Resources SSH Academy Content library Blog References Press releases Downloads Manuals Events & Webinars Media Legal Report a vulnerability Solutions SOLUTIONS PrivX Zero Trust Suite SalaX Secure Collaboration Strong ID-based access with Entra ID & Zero Trust Suite Quantum-Safe Cryptography (QSC) Security Risk Assessment, Quantification & Mitigation Device trust & access and identity verification Identity-based authentication & converged IAM and PAM TOPICS Just-in-Time Access Secure vendor access Credentials & Secrets Management Hybrid & Multi-Cloud Access Management Interactive tour: Privileged Access in the Cloud M2M Connections Management IT Audits & Compliance Secure File Transfer INDUSTRIES Managed Service Providers (MSP) Operational Technology (OT) Federal Government Security Healthcare Data Security OT Security IT/OT convergence of data & systems Zero Trust Access and ZSP Workflow approvals Secure remote access  Secure patch management  OT Compliance Discovery and threat intelligence Phishing-resistant MFA & device trust Products SalaX SECURE COLLABORATION Secure Mail Secure Messaging Secure Sign SalaX Secure Collaboration FQX File Encryptor SECURE ACCESS & SECRETS MANAGEMENT PrivX™ PAM PrivX™ OT Edition PrivX Key Manager SECURE FILE TRANSFER & ENCRYPTION Tectia™ SSH Server Tectia™ SSH Server for IBM z/OS PrivX Desktop NQX™ quantum-safe encryption Services SSH Risk Assessment™ Professional Services Support Contact us Customer cases PrivX Zero Trust PAM Enterprise Key Management UKM Tectia SFTP for servers & mainframes SSH Secure Collaboration Resources SSH Academy Content library Blog References Press releases Downloads Manuals Events & Webinars Media Legal Report a vulnerability About us Investors Partners Careers October 19, 2018 Apple hacker avoids jail in SSH tunneling attack Written by: Staff Writer Bloomberg reports that the infamous teenage Apple hacker from down under has been sentenced to eight months probation. The boy was 16 at the time and is now an adult. He accessed Apple’s internal systems between 2015-2017 and copied data and authentication keys, a magistrate told a Children’s Court. He pled guilty to two charges.

As the Guardian put it: "Despite the court being told that the teenager had downloaded 90GB of secure files and accessed customer accounts, Apple – the world’s most valuable company – has denied that customers were affected."

The magistrate in the case said:

"Helped by another youth, he later sent a computer script to the system which created a secure shell tunnel -- a method of accessing systems and bypassing firewalls -- enabling them to remove data more quickly. During the attacks, the teenager was able to access internal security policies and to save authentication keys."

The inside story on SSH tunneling SSH.COM founder and inventor of the Secure Shell protocol, Tatu Ylönen, explains SSH tunneling: "SSH tunnels are widely used in many corporate environments... For example, entire country-wide ATM networks run using tunneling for security."

On SSH.COM's informative section about SSH tunneling, Ylönen continues: "SSH connections are protected with strong encryption. This makes their contents invisible to most deployed network monitoring and traffic filtering solutions. This invisibility carries considerable risk potential if it is used for malicious purposes, such as data exfiltration."

Ylönen also highlights that SSH tunneling, in combination with utilizing stolen SSH keys, is a very powerful attack vector for hackers that can be very hard to trace. "SSH tunneling attacks can also be used for hiding the source of the attack. It is common for hackers to bounce attacks off systems and devices that allow SSH port forwarding to hide their tracks. This allows them to probe for vulnerabilities, try various login credentials, or run attack tools against email, web, telephony, and any other protocols."

How can the world's biggest company stay secure? The Australian Apple hack, according to the magistrate, involved a teenager leveraging SSH tunneling and authentication keys to exfiltrate data from the world's richest and, arguably, most successful company.

At SSH.COM we have developed CryptoAuditorto prevent unauthorized SSH tunnels. CryptoAuditor uniquely decrypts SSH sessions based on policy, via access to host keys. It also controls file transfers, and offers comprehensive session recording and playback for forensics and audits.

Fortune 500 companies in the finance, energy and technology sectors use CryptoAuditor to prevent SSH tunnel attacks. Unfortunately Apple was not one of them at the time of the Australian teen hack.

Many major organizations rely on Security Information and Event Management (SIEM) systems but they have a critical blindspot: they typically cannot see the content of content encrypted traffic. Our customers use CryptAuditor's extensive integration capabilities to pass encrypted session data to SIEM, data loss prevention, analytics and Intrusion Detection Systems (IDS) - to provide unparalleled real-time monitoring power.

 

More on CryptoAuditor via SSH.COM here >

To discuss your blindspots in confidence with an SSH.COM cyber strategy expert:

In the US: Sean Lunell sean.lunell@ssh.com +1.408.445.2791 (PST) For EMEA/APAC, contact: Rami Raulas rami.raulas@ssh.com +358 503311741 (EET)  

 

Tag(s): CryptoAuditor , cybersecurity , encryption , SSH Keys , SSH tunneling , Apple Staff Writer Staff writer at SSH.COM

Connect with the author Other posts you might be interested in breach 6 min read | December 11, 2024 Devastating US Telecom Breach by China: The Case for End-to-End Encryption Read More cybersecurity 8 min read | June 20, 2018 Hackers are now scanning for SSH keys to exploit Read More compliance 7 min read | September 27, 2017 How to fix your access issues with one button Read More Subscribe to email updates SSH is a leading defensive cybersecurity company that secures communications between humans, systems, and networks. We specialize in Zero Trust Privileged Access Controls and Quantum Safe Network Security. Our customers include a diverse range of enterprises, from multiple Fortune 500 companies to SMBs across various sectors such as Finance, Retail, Technology, Industrial, Healthcare, and Government. 25% of Fortune 100 companies rely on SSH’s solutions. Recent strategic focus has expanded SSH business to Defence, Critical Infrastructure Operators, Manufacturing OT Security and Public Safety.

Leonardo S.p.A invests 20.0 million EUR in SSH, becoming the largest shareholder of the company. SSH solutions form a Center of Excellence for Zero Trust privileged access management and quantum-safe network encryption in Leonardo - a global industrial group that creates multi-domain technological capabilities in the Aerospace, Defence and Security sector with 17.8 billion EUR revenue in 2024. SSH company’s shares (SSH1V) are listed on Nasdaq Helsinki.

 

Solutions Zero Trust Suite Zero Trust Suite & Entra ID Integration Quantum-Safe Cryptography (QSC) SalaX Secure Collaboration Security Risk Mitigation OT security MSP Security Device Trust Monitoring & Threat Intelligence Credentials & Secrets Management IT Audits & Compliance Products PrivX™ Hybrid PAM PrivX Key Manager Tectia SSH Client/Server™ Tectia™ z/OS Secure Messaging Secure Mail Secure Sign NQX™ Quantum-Safe Services SSH Risk Assessment™ Professional Services Support Resources Careers References Downloads Manuals Events & Webinars Blog Company About us Contact Investors Partners Press Stay on top of the latest in cybersecurity Be the first to know about SSH’s new solutions, product updates, new features, and other SSH news!

Thanks for submitting the form. © Copyright SSH • 2025 • Legal

智能索引记录