Threat actor Intelbroker now claims it hacked Apple along with AMD

Intelbroker claims to have hacked Apple, stealing source code and employee data. Apple has not confirmed the breach.

: Intelbroker claims to have breached both AMD and Apple, stealing internal tools' source code and employee data from Apple. Apple has not confirmed the breach, and doubts remain about the authenticity of Intelbroker's claims. Security vendor AHCTS suggests the data includes custom integrations for Apple's SSO authentication.

Intelbroker, a well-known cybercriminal group, claims to have compromised Apple after previously hacking AMD, allegedly stealing internal tools' source code and employee data from Apple. They posted this information on BreachForums, a dark web forum, asserting they accessed Apple's AppleConnect-SSO, Apple-HWE-Confluence-Advanced, and AppleMacroPlugin along with employees' personally identifiable information.

Apple has yet to confirm the breach, while AMD has engaged law enforcement and a third-party host to investigate the claims. Security vendor AHCTS reported purchasing the leaked data, which apparently contains custom integrations for Apple's proprietary authentication systems to Atlassian Jira and Confluence, rather than the actual internal tools.

Despite past instances where cybercriminals have falsely claimed to have breached major organizations, sightings of the stolen data on the dark web suggest Intelbroker's current claims might be genuine. Intelbroker has a history of significant cybertheft exploits, including breaches of Los Angeles International Airport and several prominent organizations.