What's your point in sharing this article? I mean, the writer even undermines it by writing:
the phone number and email addresses of an Internet user can be obtained from a wide variety of sources, especially in the case of public accounts, so there’s no proof that the Apple employee, if he was indeed an Apple employee, indeed got access to iCloud data.
As for the second article, that also doesn't have any facts. It speculates the "hack" happened by phishing. Perhaps information to gain access to their account was obtained from some major website hack (
https://haveibeenpwned.com/).
Both of these sound like PEBKAC. Don't ever reuse passwords. Don't click on links in emails that allege you need to change your password for some website but type the address of the website in your browser yourself.
But sure, if you're going to be using online storage for sensitive material (e.g., more than just your music) do it in a way that encrypts your files locally with some other program first if you're worried about it. So even if somebody gains illegitimate access to your online storage, they can't do anything with the files.
