Someone just uploaded a password-hacking tool to name iDict on GitHub. The tool promises to use all good old brute force techniques to crack them codeof iCloud access. 
Tool developers also argue that they can avoid the two-factor authentication constraints of Apple, supposedly blocking brute force attacks.
Its capabilities iDict limited by the size of the dictionary it uses to guess your passwords. It uses a 500 word list but this can be changed by someone with the necessary knowledge. The codes are in a txt file in the path iDict-master \ files \ wordlist.txt
All the passwords that he uses meet the requirements of his passwords iCloud. So check the tool and if you see your password, change it immediately. You should also enable two-factor authentication on all of your accounts as an additional security measure.
The installation tool and instructions are on GitHub.
