"A posting on online code-sharing site GitHub said a user had discovered a bug in Apple's Find My iPhone service, which tracks the location of a missing phone and allows a user to disable the phone remotely if it is stolen. The bug allowed a hacker to keep trying passwords until identifying the right one.Apple Investigating Reports of iCloud Vulnerabilities - WSJ
Most online services lock down an account after multiple incorrect password attempts to prevent this type of so-called "brute force" attacks.
The GitHub post was updated on Monday to read: "The end of fun, Apple have just patched.""
Tuesday, September 02, 2014
Apple Investigating Reports of iCloud Vulnerabilities - WSJ