iTunes store account hacked

Baba, there are actually a lot of really funny gospel songs like Tammy Wynette's "I'd Like To See Jesus On The Midnight Special" which you might enjoy, atheist to atheist. Wanda Jackson's "Jesus Put A Yodel In My Soul" also comes to mind.

In any case, to update you all on my situation:

After a week of emailing them, I finally got a response and had my 74.01 in gift cards restored. I have yet to log back in to my account and did mention in one of my emails back to the tech who wrote to me my concerns about having my account hacked twice and not being refunded if it happened again and was told to get anti-piracy software and when I asked about suggestions for that was told they were not allowed to rec any non-Apple programs. For all I know, my money could already have been ganked again. I can't come up with 74 bucks worth of songs I want to buy at once so have not bothered dealing with getting into my account again.

I've been dealing with other brand new iTunes problems like the app refusing to burn anything for the first time ever (Mac user since '87), crashing as soon as I hit BURN DISC and having my posts on that subject erased by the mods -- THEY ARE LISTENING!!! JUST NOT HELPING WITH ANYTHING!!!!!! --

I'm very glad this problem with THOUSANDS OF HACKED ACCOUNTS has gotten so much press in the past week and can only hope it gets more press before more unwitting victims put in their credit card info online for iCLOUD and wind up being evicted because their checks bounce while ten year olds in China gamble with their rent money.

It's clear from just the posts in this thread, nevermind all the rest of the discussion on this topic all over the web, that an official statement from Apple and a sturdy policy line on refunds when a client has obviously been stolen from (hello KamaGames!) would go a long way to clearing up any confusion on the matter.

<Edited by Host>

Kevin to be honest I doubt it was a brute force hack. These days due to auto locking and other security features there is almost no way to be able to determine a password from a brute force attack. You may find that you're hacking was unique and you may have been key logged which would explain the reason that you kept getting get logged out as there may have been missing letters which the hacker may have to determined

I kind of wonder about brute force though (at least after the initial hack). My account was restored to me a few days after I reported my hacking to apple. I changed my password and logged in to make certain that everything was correct with my account (which it was). Then I logged off and didn't try to access my account for several days. The next time I logged on to my account I had a message from Apple that stated that my account was locked because too many access attempts had been made.

@zerg1234--

My email should be on my profile -- I would love to chat with you at greater length about your experience here with APple and iTunes (and anyone else who sees this as well). I'm a reporter writing this up and the sense I am getting is that while Apple is good about compensating people a preventative measure of some kind would be appreciated. But someone tell me if I am reading this wrong.

I don't think I did anything to get my iTunes account drained. I believe it's something on their end that got compromised.

My password was one of those "non character repeating, number, upper case, lower case, and special character", kind of passwords. The only time I ever use my iTunes password, is when I make a purchase in either iTunes, my IPhone or iPad.

If someone has the brains or resources to not only replicate iTunes or an Apple iOS App, AND trick Apple into sending me what I bought, well then I guess they deserve some praise.

But again, ultimately, I believe the blame is on Apples side of the connection, not mine.

I just had the same thing !!!! Couldnt get email from my account off my iPhone, so logged on to the account from my work computer and got the error that my account was locked due to too many tries to access...I got a hold of Apple help in chat but she didnt say anything to me about this or to change my password...

Then I got up the next morning and BAM - Kingdom Conquest (5 times) were purchased (but not downloaded) and all my store credit gone...I did notice my credit card info was delete and i kept it that way...

So what is going on -- is it just iTunes being hacked into or is it our apple accounts?

Looks like I'm in the same boat. Got notice this AM about some purchases on my iTunes account from Paypal, with no info as to what they were. So I logged into iTunes and found several in-app purchases for Kingdoms at war. Totaling around $120. I changed my password and called Apple.

The rep I spoke with couldn't help me, but offered to report the incident to the iTunes support folks, and I got a confirmation email from them shortly after.

I also filed a dispute with Paypal. Hopefully I'll be refunded without too much hassle.

This whole incident is rather disturbing...

Well you can add me to the list of people who had their account hacked. I have no idea exactly how my account got hacked, but here I am. Though I am a bit more fortunate that most of the people here, and so far they have only purchased a single application, but they may have gotten my CC info. Reported to iTunes and my CC company, and hopefully this issue gets resolved quickly.

Is this a tie in to all the other places being hacked recently, or a completely different group of hackers?

twice in 2 days for me!

Kingdom Conquest cleaned out my account 2 days ago...got an email from Apple this morning saying they had refunded me, then a few hours later got another receipt from KC saying it had cleaned out my account AGAIN!

I hadn't even logged back in after the refund....but had changed my password after the inital attack.

So whatever it is, is NOT using a password to get in...must be some backdoor/inside Apple issue.

Awaiting to see if I will be refunded again.

I never noticed a "None" button on the payments page for method of payment. Good it's there, because I just used it.

With all this current negative activity on a platform that was supose to be buttoned up a long time ago. I don't have ANY confidence in iCloud. That will be a hackers paradise.

Thats because you arent ALLOWED to see it when you set up the account the first time: it isnt shown.

I just set up my niece on a new iPad she got for graduating... told her right off the bat to never give Apple CC info and DO NOT use the gift card I bought her for xmas until she had nearly the total amount of songs/apps/software in a wishlist in iTunes... and once she got that figure then only then to buy with the gift card or it will be stolen.

It is not a matter of IF but WHEN you will get ripped off, for anyone using iTunes... its multiple rip offs each day by the recording of this thread alone.

But back to the NONE button: you cannot have an iTunes account without first giving Apple your CC info.

I hate that fact.

But atleast what you can do when setting up a new account or one for your loved ones you can give a (has to be valid, it is checked before your account is activated) CC card and then IMMEDIATELY go back into your profile specs and then you see the NONE button.

I deleted the CC info and chose NONE, logged out, logged back in to make sure there was no CC info and that NONE was still selected, and have been ok ever since.

Whatever freaking lousy pretend EULA that Apple wants to push in my face now that apparently waives all responsibility of them for anything that goes wrong with my account or credit line if I get hacked again, they can go stuff themselves with it as I will not be paying for any song or app and not be giving them the data to allow the hackers to freely use.

If I 'cant live without that song' I will do the "CC data in, purchase, confirmation slip, remove CC data right away again" routine. Apple will have no recourse and no excuse then; and they also wont be giving me the 'you were hacked once, we dont refund for hacks more than once" excuse.

the stinking hackers can use their own CC info if they want to so easily and brazenly use my account to do something ********.

OK! This is a big deal. I was a little naive in thinking that it was an isolated incident a year or so ago, but I have switched off the CC info button on my account page. I just went to my 'Purchased' section of iTunes and found that I have a Christian music thief (ironic or oxymoron) hacking my account. I have no idea who these artists are. The hacker must have gotten in when I had a PayPal account set up for a very short time about 4 months ago. I decided to go back to a CC for simplicity. I am going to try and retrieve the info from that period. It is creepy.

Got an email from Apple the other day that they'll be refunding me the stolen credit in 5-7 business days. But they disabled my account pending an "investigation" that "could take several days". So now I'm locked out of my iTunes account and can't even download updates to things I've already purchased!

What the heck, Apple? Not only is your security garbage, but the customer is the one who gets penalized?? I already changed my password, why would you need to lock my account? Any investigation shouldn't need my account to be locked out. I am furious!

I've been strongly considering switching to Android, yet been reluctant because of all the iApps I'd already bought for my iPhone. But I guess now there's nothing holding me back. Goodbye, Apple.

I have YET to hear from apple on this. I emailed them on Tuesday and then again yesterday....I haev to say, the handling of this had really upset me. I have been an Apple supporter for over 20 years....and this is just freaking me out --

and NOW i cant even update any of my apps on my iphone unless i put in my cc info....why is that?

I just sent them an email there too --

I jsut want a reply from someone telling me if they are going to refund the money that was stolen AND why i need a credit card to update apps i already purchased. Also, i would LOVE to know if they are doing anything to stop this from happening again...

and why isnt this out on the news?