Was this the kind of nightmare Wozniak was contemplating this past weekend when he told an audience that he "really worries about everything going into the cloud"?
"I think it's going to be horrendous. I think there are going to be a lot of horrible problems in the next five years," Wozniak said, according to AFP. "With the cloud, you don't own anything. You already signed it away," he added, along with, "The more we transfer everything onto the Web, onto the cloud, the less we're going to have control over it."
It's entirely plausible Wozniak was thinking in broader terms about data ownership and the prospect of cloud providers treating customer data and files as their own. For example, an unethical company might hide terms in cloud contracts that permit it to mine customer data in the name of research or for more nefarious purposes. A cloud company might also try to shackle customers in how they can use, say, e-books, videos, or software they legally bought and paid for. Heck, a cloud company could go rogue and hold a customer's data hostage or sell it to the highest bidder.
Those are potential threats pertaining to how much control one has over his or her cloud-stored data, but they aren't the only issues. Part of the threat lies in just how interconnected data and devices and identities become in the cloud, all of which can become breached by bypassing a single password.
Consider for a moment the fact that, thanks to one gullible Apple employee giving up a customer's iCloud password, said customer lost all the contents of his cloud-connected devices (hopefully not permanently). Consider that thanks to an ignorant Dropbox employee's actions of reusing passwords and storing sensitive, unencrypted customer info in the cloud, a bunch of Dropbox customers became victims of massive spam attacks, which easily could have been more dangerous phishing attacks.
For all the benefits of the cloud, it creates new weaknesses in a company's security infrastructure. Both Dropbox and Apple have failed at embracing and enforcing necessary security measures to protect users. Cloud users, both customers and employees, meanwhile, continue to ignore or underestimate cloud-related risks. Yes, we can rail at the Apple employee for letting a hacker bypass Honan's security questions, but then, a resourceful hacker could potentially dig up the correct answers to security questions through some research on Facebook, targeted phishing, and the like.
This story, "Apple iCloud breach proves Wozniak's point about cloud risks," was originally published at InfoWorld.com. Get the first word on what the important tech news really means with the InfoWorld Tech Watch blog. For the latest developments in business technology news, follow InfoWorld.com on Twitter.