Hillary Clinton’s campaign chief, John Podesta, might be having a particularly lousy week. In the wake of WikiLeaks dumps revealing Podesta’s email and the sensitive account details inside, intruders (apparently from 4Chan’s /pol board) claim to have hijacked his iCloud account and wiped his iOS devices. They may have been the ones who briefly compromised his Twitter account, too. Podesta’s social account is back in running order, but it’s not certain what happened to his iPhone and iPad.
As with earlier high-profile iCloud intrusions, this doesn’t appear to be a hack. Instead, the intruders took advantage of what knowledge WikiLeaks offered to reset passwords and take control. That suggests that Podesta wasn’t using two-factor authentication to protect his accounts — an odd oversight for someone long considered a high-profile target, especially when WikiLeaks data has circulated for days.
It’s difficult to know whether or not 4chan members are directly responsible, or did as much damage as they claimed they did. The screenshots are plausible, but it’s easy to imagine someone on the prank-prone site whipping up faked images to look like a champion to Clinton haters. We’ve reached out to the Clinton campaign to see if it can confirm any details and say what it’s doing next, although Podesta has already blamed the Russian government for the hack that led to the email breach. Whatever it says, it’s safe to presume that the campaign will be double-checking its security measures.
Apparently some asshole from anonymous compromised Podesta’s Apple account using creds in WL dump and remotely wiped his phone. V cruel. pic.twitter.com/ZdfWf2NkuY
— Pwn All The Things (@pwnallthethings) October 13, 2016