Previous 1 17 18 19 20 21 Next 1,956 Replies Latest reply: Jul 6, 2014 5:54 AM by userremoved Go to original post Branched to a new discussion.
  • dogcutter Level 1 Level 1 (0 points)

    The simple reason on how they profit from it is because its the developers or a group of people including the developer who hack the accounts, buy their own apps and make money. problem is there is no proof i guess.

    On your last point they could include a feature like the optin setting on facebook where you recieve a email when you get logged into a new device or computer and options to block those and change your password.

  • bluemc Level 1 Level 1 (0 points)

    It would be a big help if they would send out an immediate email confirmation for any and all purchases through the iTunes store, or any address changes or computer authorizations.  The three day delay in sending emails allows the hackers to make several charges until the gift card has been used up. We could at least have a fighting chance to change passwords and avoid the dispute process which is a pain in the rear.

  • MomawNadon78 Level 1 Level 1 (0 points)

    This same thing happened to me on May 4. Opening iTunes showed Texas Poker beginning to download, and since I knew I had never even looked at the store page of the app, something was fishy. I checked my account, found the purchase order for the free game and 2 in-game app purchases. Then I found my billing info had been changed to Cockseyville, MD. I immediately changed my password and security question, then emailed Apple.

     

    I poked around the internets and found this thread with some others, though this thread is the best example. We all have gift cards in common. Our passwords or security questions weren't compromised, yet an unauthorized person was able to change our info and drain our accounts. How?

     

    Upon receving a reply from Apple, I had the standard form of repeating my info, purchases, etc with the standard change your password script, as well as my account had been disabled (I have no issue with that). In my reply, I gave specific information regarding my account, steps I took to find a problem on my end (two scans to determine if a keylogger/trojan/malware/etc; none found), checked which computers had been authorized and detailed it (2 are in use, 2 are in safe storage), and that I had also changed the password/security question.

     

    The latest response? My account has been re-enabled, all computers are deauthorized, change your password/security question... again, re-authorize your current computer. Nothing regarding the actual security issue. I won't be tying any cards to iTunes nor purchasing anything from iTunes if this kind of security loophole/breach is not fixed. This kid of attack has been going on for at least 6 months, as attested by the start of this thread, and it is still being used? How? Why has this not been solved by Apple? How was my account info edited without it being an authorized computer? How was my security question answered by someone who did not know what the possible answer was - as I had written my own question and answer instead of using a standard one given by Apple - to be able to bypass a password?

     

    If I get those kinds of answers from my support bot, then I will share them here.

  • CDOphx Level 1 Level 1 (0 points)

    I am replying to formally log a similar issue since Apple is in denial that they have a security problem.

     

    This is the 2nd time this year my account has been hacked and my iTunes balance drained.  Same MO as most of you with address changed to Townsend MD.   I am a technically literate adult with 2 authorized machines in my home that are well secured with TrendMicro Security and LinkSys Modem Firewalls.  My computers never leave my home and my iPod rarely does.  Nobody could guess my password or security question.  I deleted my credit card info from this account after the first time.

     

    I rarely travel so is it a coincidence that the two theft incidences occurred shortly after I traveled and used hotel free wireless connections?  Or is it that both times I also updated all of my Apps.  Is there spyware on my iPod that is giving away my information?   How can I even check for that?

     

    I was able to get my iTunes balances restored by Apple after refering to message boards such as this (19 pages and counting - so thanks everyone for taking time to log the problems) to demonstrate this is a known problem.  I was about to purchase 4 iPhones, but not sure I want more of my life and privacy tied to one of their devices when these problems exist.

     

    Dear Apple:  Stop glossing over the problem. Acknowledge you have security holes and get them fixed !  Until then, no iPhones for this family.

  • MomawNadon78 Level 1 Level 1 (0 points)

    Yup, the security issues were ignored. The only 'advice' I got in this last email from Apple support is this:

     

     

     

    ...after your account was enabled, you must reset its password. I recommend that you reset the password in the follow iforgot link:

     

    http://iforgot.apple.com

     

    Thank you for choosing the iTunes Store as your source of entertainment. We truly appreciate your interest in the iTunes Store. Have a good day!

     

     

    Yea, I won't be purchasing anything from iTunes for a long long time.

  • michael from colorado Level 1 Level 1 (0 points)

    My wife and I had our ITunes gift card credits stolen this week by KamaGames, LTD Texas Hold'em Poker in app purchases.  2 purchases to wipe out $22.98 in ITunes credit.  The app had not been installed on any of our devices or our computers, yet it said we had made in app purchases.  From the number of postings here, obviously, Apple has a big problem with either account security, in app purchase fraud, or both.

     

    Denying that a problem exists will not help get it resolved.

     

    We would have changed our passwords sooner, if Apple had notified customers that thousands of accounts had been compromised last year and were on sale in China.  http://www.modernb2b.com/fraudulent-apple-itunes-accounts-for-sale-in-china/3421 80/

  • Chris CA Level 9 Level 9 (76,960 points)

    michael from colorado wrote:

     

    Denying that a problem exists will not help get it resolved.

    When did anyone deny a problem exists?

  • CDOphx Level 1 Level 1 (0 points)

    Michael from Colorado, that was the same purchase used to drain my iTunes card this last go round.  I am doubtful it is KamaGames doing the theft, but rather the thieves playing games. Apple did give me my funds back after I pointed a few things out to them. 

     

    Chris CA - you are being sarcastic right?  Sorry, I cannot tell for sure.

     

    Apple's first line of defense is to blame the customer for mishandling their account by sharing it or having a weak password's and security questions and then sending out lame advice on how to protect ourselves.  My experience is that you have to push back and fight for your dollars back. As a reasonably technical person I am pretty certain they can tell that the purchase is not being made from or downloaded to the authorized devices (IP's) on my account.

     

    Of course the problem is compounded by the fact that there are people trying to scam Apple so they cannot just take everyone at their word, afterall, if everyone were honest we would not have a problem to start with.

    Its not an easy problem to fix, but this is Apple's business and I feel they need to put alot more effort into resolving it based on the length of time it has been going on. 

  • Chris CA Level 9 Level 9 (76,960 points)

    "Chris CA - you are being sarcastic right?"

     

    Not at all. I've never seen anything from Apple stating that there was NOT a problem.

    Just the opposite.

     

    "As a reasonably technical person I am pretty certain they can tell that the purchase is not being made from or downloaded to the authorized devices (IP's) on my account"

     

    But the device they a downloading to IS authorized, else they would not be able to download.

    However it happened, they got the password to the account and authorized their device.

    Yes, it is an issue that Apple needs to get a handle on and I'm fairly confident that they are looking into how to fix it/make it better.

    They have already taken some measures in that users have to verify their account more often.

     

    Regardless of what Apple does, there will ALWAYS be some users who make the problem themselves as the weakest part of any security is human interaction.

  • StoneyPA Level 1 Level 1 (0 points)

    True, Apple isn't denying the problem but sure as **** isn't acknowledging it.  I got the same treatment in that my password was hacked. F that.  I was using lower & upper case, numbers, and a symbol.  I never use public wifi so this is all bull.  Took them 11 days to even re-enable my account after several e-mails.  And STILL NO REFUND ALMOST 30 days later.  Seems like they're encouraging these low life hackers. Just got a survey to fill out.  Wonder if they'll get good grades/comments from me???

  • tomfromreigate Level 1 Level 1 (0 points)

    I've just had all the credit from 2 Gift Cards cleaned out of my iTunes account. I redeemed £30 last weekend, and got an email yesterday informing me of the purchase of Texas Hold'em Poker 500k chips. I checked my purchase history and the  Texas Hold'em Poker app had been purchased on my account, followed by 2 related puchases of 1.5M chips and 500K chips. These were nothing to do with me.

     

    What alarms me is that my account has clearly been compromised, and further more it must have been getting scanned for available balance for the new balance to be cleared out so quickly by the hackers.

     

    This is clearly not an isolated or new issue...

    - Why has Apple done nothing about it... if they cant fix it then they should at least warn their customers?

    - Why are the companies responsible for these Apps still allowed to sell on iTunes?

     

    It smacks of complete disregard for customers from Apple...

     

    I am now seriously concerned about the overall security of the whole Apple set-up. I have an encrypted password store app on my phone in which I keep passwords for things like online banking...

     

    How has this prolonged security vulnerability stayed out of the media for so long!?!?

  • tomfromreigate Level 1 Level 1 (0 points)

    I've just had all the credit from 2 Gift Cards cleaned out of my iTunes account. I redeemed £30 last weekend, and got an email yesterday informing me of the purchase of Texas Hold'em Poker 500k chips. I checked my purchase history and the  Texas Hold'em Poker app had been purchased on my account, followed by 2 related puchases of 1.5M chips and 500K chips. These were nothing to do with me.

    Apple refunded my £30. So appreciate that... although my account has been diabled so I cant spend it until I've provided them more info and they do some more "investigation".

     

    No concrete answers to security concerns. No info on whether this is a known issue and whether just changing my iTunes password is adequate action to stop it happening again.

     

    So don't suppose I'll be using iTunes any more... but that's not much of an option since I've got an iphone & ipad...   

  • StoneyPA Level 1 Level 1 (0 points)

    I've written to a few places to try to get this issue to the forefront since Apple could care less about this security hole.  It's now 28 days and counting for a refund.

  • edwinz Level 1 Level 1 (0 points)

    I've got hit also. Someone bought a Texas Holdem Poker 1.5M chips off the remaining prepay credit on my iTunes account... I quickly lodged a report to Apple and changed my password. I hope I get a refund quickly. Not very happy that this happened. I'm very careful about my usernames and passwords, but hey this stuff do happen ...

     

    Strange thing is that I didn't get an email notification about this hacked purchase... Do in-app purchases generate email notifications?

  • pdean Level 1 Level 1 (0 points)

    I was also hacked shortly after entering a gift card.  They drained my whole gift card and I am fighting to have the credit returned to my account.  Despite what some people say in these discussions, Apple has a problem and it IS apple's problem.  I change my password every 3 months and I use the longest password I can, with numbers, symbols, lowercase, uppercase and I have never been hacked in the 20 years that I have been online, until now.

     

    I am going to look into Amazon for music downloads from now on and I won't be buying any itunes giftcards either!

Previous 1 17 18 19 20 21 Next