Yesterday, we reported that several iPhone and iPad users in Australia were locked out of their devices. Apple issued a statement today clarifying that the iCloud service, which forms the backend for the Find my iPhone service, was unaffected, and that users impacted by the hack should change their Apple ID passwords.
"Apple takes security very seriously and iCloud was not compromised during this incident. Impacted users should change their Apple ID password as soon as possible and avoid using the same user name and password for multiple services. Any users who need additional help can contact AppleCare or visit their local Apple Retail Store."
The remote hack was carried out using the Find my iPhone service, with affected devices showing a message that read, "Device hacked by Oleg Pliss."
Apple did not offer any explanation as to how the hacker was able to retrieve user data. The hack was originally localized to Australia, but users from other New Zealand, US and Canada also reported being locked out of their devices on Apple's official support forums.
In addition to changing your password, we also suggest enabling two-factor authentication for your Apple ID to secure the service against future hacks.