updated 06:28 pm EDT, Fri July 26, 2013
Site pulled by Apple after evidence of intrusion
The Apple Developer Center website is once again available -- at least in part -- to developers. With no comment, Apple restored the site at about 5PM EST, with no difference in user experience. The restoration of the site's main functions ends an eight-day period of unavailability where Apple initially kept silent until it ultimately revealed that hacking had been attempted that exposed vulnerabilities. The source of the hack was eventually traced to a self-proclaimed "white hat" security researcher. In response to the intrusion, Apple posted a new "system status" page for the Developer Center, keeping users appraised of the situation.
"Last Thursday, an intruder attempted to secure personal information of our registered developers from our developer website," an updated site message reads. "Sensitive personal information was encrypted and cannot be accessed, however, we have not been able to rule out the possibility that some developers' names, mailing addresses, and/or email addresses may have been accessed. In the spirit of transparency, we want to inform you of the issue. We took the site down immediately on Thursday and have been working around the clock since then."
A man named Ibrahim Balic identified himself on July 22 as the person behind a hack of the Apple Developer Center. Balic describes himself as a "security researcher," only interested in seeing "how deep" he could go rather than causing any problems. He adds that he reported 13 bugs to Apple, one of which allowed him to gain access to user information.