Apparent Oleg Pliss iPhone Hackers Arrested

| News

Two Russian men apparently linked to the iPhone lockout scam that hit Australia in May have been arrested. The two have been accused of remotely locking victim's iPhones and then demanding a ransom, and while authorities stopped short of saying they were involved on the Oleg Pliss attacks, their actions sound exactly the same.

Suspects in Oleg Pliss-like attack arrested in MoscowSuspects in Oleg Pliss-like attack arrested in Moscow

The two men were 17 and 23 years old, according to Infosecurity. The suspects used phishing websites to trick victims into giving up their Apple ID user name and password, and also used a scheme where victims were promised large amounts of media content in exchange for their account information.

With the victim's Apple IDs in hand, the suspects were able to use Find My iPhone to remotely lock iPhones, iPads and Macs, and then demand ransom before unlocking the devices.

At the time of the attacks, speculation ranged from logins culled from data breaches at other companies to a hack on Apple's own iCloud servers. Apple publicly denied its servers were hacked.

Moscow authorities found documentation on hacking systems, along with SIM cards and phones they say were used in illegal activities.

While the suspects do fit nicely into the Oleg Pliss scheme, Moscow police aren't definitively stating the two men were involved in that incident. While it's likely they were, there's still a possibility this was a coincidental scheme and the real Oleg Pliss suspects are still in the wild.

The Mac Observer Spin The Mac Observer Spin is how we show you what our authors think about a news story at quick glance. Read More →

Regardless of whether or not the real Oleg Pliss attackers are in custody, this is a great reminder to avoid offers that are too good to be true, and to stay away from websites that you think aren't trustworthy.


Lee Dronick

As I surmised, it wasn’t that they hacked iCloud, Apple servers, or some other place where Apple IDs are stored. Not that it couldn’t happen, but there are plenty of phish in the sea.


According to Intego, they confessed to the pliss attack.

Log in to comment (TMO, Twitter or Facebook) or Register for a TMO account