Apple has after two days extensive investigation come to conclusion there was no fault of Apple security controls, instead hacker targeted certain usernames and brute force along with security question to bypass security.
In a massive celebrity iCloud hack, 100 of celebrities private pics were leaked which includes The Hunger Games star Jennifer Lawrence and popular model Kate Upton. Many celebrities condemned the public reaction and were saddened by the leaks confirming authenticity.
Apple has advised user to adopt more secure password with combination of numbers and special characters. Moreover two step verification can be activated to further tighten security.
Here’s full text of what Apple said
We wanted to provide an update to our investigation into the theft of photos of certain celebrities. When we learned of the theft, we were outraged and immediately mobilized Apple’s engineers to discover the source. Our customers’ privacy and security are of utmost importance to us. After more than 40 hours of investigation, we have discovered that certain celebrity accounts were compromised by a very targeted attack on user names, passwords and security questions, a practice that has become all too common on the Internet. None of the cases we have investigated has resulted from any breach in any of Apple’s systems including iCloud® or Find my iPhone. We are continuing to work with law enforcement to help identify the criminals involved.
To protect against this type of attack, we advise all users to always use a stong password and enable two-step verification. Both of these are addressed on our website at http://support.apple.com/kb/ht4232