You can make a difference in the Apple Support Community!

When you sign up with your Apple Account, you can provide valuable feedback to other community members by upvoting helpful replies and User Tips.

Looks like no one’s replied in a while. To start the conversation again, simply ask a new question.

Username and password stolen from ipad

Hi


u have had my user name and password stolen from my iPad.


how do I manage this


thanks

Stacey

iPad, iPadOS 13

Posted on Apr 16, 2020 10:58 PM

Reply
Question marked as Top-ranking reply

Posted on Apr 17, 2020 2:00 AM

If you think your Apple ID has been compromised


Are you concerned that an unauthorized person might have access to your Apple ID? These steps can help you find out and regain control of your account.


Signs your Apple ID has been compromised

Your Apple ID might be compromised if you receive an account notification from Apple for a change you didn't make, or if you notice account details or changes you don’t recognize. For example:

  • You receive an email or notification that your Apple ID was used to sign in to a device you don't recognize or did not sign in to recently (for example, "Your Apple ID was used to sign in to iCloud on a Windows PC").
  • You receive a confirmation email from Apple that your Apple ID password was changed or your account information was updated, but you don’t remember making any changes.
  • Your device was locked or placed in Lost Mode by someone other than you.
  • You see messages you didn't send, or items you didn’t delete.
  • You see charges or notices for purchases that you didn't make. Learn what to do if you see an unfamiliar iTunes Store or App Store charge on your credit or debit card statement.
  • Your password no longer works, or it might have been changed or locked.
  • You don't recognize some or all of your account details.

If you received an email, text message, or phone call that you're not sure is valid or you think might be phishing, here are some tips to help determine its legitimacy.


Gain control of your Apple ID

If you think your Apple ID is compromised, use these steps to gain control of it and review your account information:

  1. Sign in to your Apple ID account page. If you can't sign in or you receive a message that the account is locked when you try to sign in, try to reset or unlock your account.
  2. Change your Apple ID password and choose a strong password.
  3. Review all the personal and security information in your account. Update any information that isn't correct or that you don’t recognize, including:
    • Your name.
    • Your primary Apple ID email address.* If you need to change your email addressupdate the features and services that you use with Apple ID, so that each one is using your updated Apple ID.
    • All alternate email addresses, rescue email addresses, and phone numbers. 
    • The devices that are associated with your Apple ID, if you've already set up two-factor authentication.
    • Security questions and answers. If you think they might be easy to guess, you should change your security questions.
  1. Check with your email address* provider to make sure that you control every email address associated with your Apple ID. If you don't control the email addresses associated with the Apple ID, you should change the password for the email address or use a different email address. 
  2. Set up two-factor authentication for your Apple ID. This additional security feature is designed to prevent anyone from accessing your account, even if they know your password.


https://support.apple.com/en-us/HT204145


5 replies
Question marked as Top-ranking reply

Apr 17, 2020 2:00 AM in response to Staceywelsh

If you think your Apple ID has been compromised


Are you concerned that an unauthorized person might have access to your Apple ID? These steps can help you find out and regain control of your account.


Signs your Apple ID has been compromised

Your Apple ID might be compromised if you receive an account notification from Apple for a change you didn't make, or if you notice account details or changes you don’t recognize. For example:

  • You receive an email or notification that your Apple ID was used to sign in to a device you don't recognize or did not sign in to recently (for example, "Your Apple ID was used to sign in to iCloud on a Windows PC").
  • You receive a confirmation email from Apple that your Apple ID password was changed or your account information was updated, but you don’t remember making any changes.
  • Your device was locked or placed in Lost Mode by someone other than you.
  • You see messages you didn't send, or items you didn’t delete.
  • You see charges or notices for purchases that you didn't make. Learn what to do if you see an unfamiliar iTunes Store or App Store charge on your credit or debit card statement.
  • Your password no longer works, or it might have been changed or locked.
  • You don't recognize some or all of your account details.

If you received an email, text message, or phone call that you're not sure is valid or you think might be phishing, here are some tips to help determine its legitimacy.


Gain control of your Apple ID

If you think your Apple ID is compromised, use these steps to gain control of it and review your account information:

  1. Sign in to your Apple ID account page. If you can't sign in or you receive a message that the account is locked when you try to sign in, try to reset or unlock your account.
  2. Change your Apple ID password and choose a strong password.
  3. Review all the personal and security information in your account. Update any information that isn't correct or that you don’t recognize, including:
    • Your name.
    • Your primary Apple ID email address.* If you need to change your email addressupdate the features and services that you use with Apple ID, so that each one is using your updated Apple ID.
    • All alternate email addresses, rescue email addresses, and phone numbers. 
    • The devices that are associated with your Apple ID, if you've already set up two-factor authentication.
    • Security questions and answers. If you think they might be easy to guess, you should change your security questions.
  1. Check with your email address* provider to make sure that you control every email address associated with your Apple ID. If you don't control the email addresses associated with the Apple ID, you should change the password for the email address or use a different email address. 
  2. Set up two-factor authentication for your Apple ID. This additional security feature is designed to prevent anyone from accessing your account, even if they know your password.


https://support.apple.com/en-us/HT204145


Apr 17, 2020 4:16 AM in response to Staceywelsh

That might not have been your intended question - but then your question was about as vague and lacking in detail as is possible.


As for your “Forbes article”, again, you provide no direct reference... and whilst we often try, nobody here is a mindreader.


What makes you believe that anything has been “stolen through” your iPad. Unless somebody else has had physical access to your iPad - and somehow knows your device passcode - direct theft of credentials from your device is so unlikely as to be beyond consideration.


If, however, you have fallen victim to social engineering - and have “given away” your account credentials, that could reasonably explain loss of your credentials to a possible Threat Actor.


Settings all of that aside, if you have reason to believe that any of your account credentials have been lost or compromised, you should change the associated account passwords without delay.




Apr 30, 2020 6:49 AM in response to LotusPilot

Dear team


My response seems to have hit a nerve.


I looked for the Forbes article: https://www.forbes.com/sites/gordonkelly/2019/08/10/apple-iphone-ipad-security-warning-ios-12-ios13-iphone-xs-max-xr/#5ffc083a4c05

This week I received notification that the mail app can also be hacked.


I have not shared my device, user name or passwords and have changed passwords.


I am battling to understand that this is not taken seriously.

So much development work goes into the Contacts and Mail apps and switching away from the Contacts and now Mail apps is certainly not an easy one.


Please advise if there are any known ways to identify and remove malware.


thanks

Stacey

Apr 30, 2020 7:38 AM in response to Staceywelsh

No, you haven’t hit a nerve. All questions posted within the Apple Support Communities are taken seriously by the majority of its learned contributors.


Your initial question was infinitely vague - and perhaps speculated that information had been stolen from your device without any explanation of any issues that you may be experiencing.


The initial response provided information appropriate to potential compromise of your AppleID - this being a situation where a Threat Actor might be able to access personal or sensitive information.


The forbes article, to which you refer, makes journalistic copy of a largely theoretical security vulnerability that has publicly been disclosed by Security Researchers. Apple, and others, have stated that they are unaware of known exploits for the described vulnerability. This, of itself, does not deny that a vulnerability exists - merely that an exploit is not known to be active.


As for malware, the security architecture of iOS/iPadOS is such that it is not vulnerable to “traditional” forms of malware infection - possibly known to you by more colloquial terms, such as a virus or worm infection, that refer to specific types of threat. This does, however, make assumption that Apps are only loaded from the trusted source - the Apple App Store - where Apps are rigorously vetted by Apple prior to being made available for download.


If Apps are installed out-with the App Store, then this safeguard cannot be guaranteed - and in this circumstance, App may well be infected with malware. Unless you are a Developer, or use a managed “Enterprise” device, this is unlikely to apply to you.


All computer systems (and Apple is no exception in this regard) are vulnerable to other types vulnerability and exploit by malicious Threat Actors - many of which are browser-based or rely upon social engineering to obtain (or fool the victim into providing) information that can be used for nefarious purposes. Within iOS/iPadOS APIs are available to mitigate many browser-based attacks. Other measures, such as secure DNS, can similarly provide increased levels of “system hardening” and protection.


So, do you have an actual problem - or reason to be concerned. If so, please describe any symptoms or untoward behaviour that you currently experience. With more knowledge of any problem you may have, we may be able to provide constuctive assistance. We will help were we can.

Username and password stolen from ipad

Welcome to Apple Support Community
A forum where Apple customers help each other with their products. Get started with your Apple Account.