I kind of wonder about brute force though (at least after the initial hack). My account was restored to me a few days after I reported my hacking to apple. I changed my password and logged in to make certain that everything was correct with my account (which it was). Then I logged off and didn't try to access my account for several days. The next time I logged on to my account I had a message from Apple that stated that my account was locked because too many access attempts had been made.
My email should be on my profile -- I would love to chat with you at greater length about your experience here with APple and iTunes (and anyone else who sees this as well). I'm a reporter writing this up and the sense I am getting is that while Apple is good about compensating people a preventative measure of some kind would be appreciated. But someone tell me if I am reading this wrong.
I don't think I did anything to get my iTunes account drained. I believe it's something on their end that got compromised.
My password was one of those "non character repeating, number, upper case, lower case, and special character", kind of passwords. The only time I ever use my iTunes password, is when I make a purchase in either iTunes, my IPhone or iPad.
If someone has the brains or resources to not only replicate iTunes or an Apple iOS App, AND trick Apple into sending me what I bought, well then I guess they deserve some praise.
But again, ultimately, I believe the blame is on Apples side of the connection, not mine.
I just had the same thing !!!! Couldnt get email from my account off my iPhone, so logged on to the account from my work computer and got the error that my account was locked due to too many tries to access...I got a hold of Apple help in chat but she didnt say anything to me about this or to change my password...
Then I got up the next morning and BAM - Kingdom Conquest (5 times) were purchased (but not downloaded) and all my store credit gone...I did notice my credit card info was delete and i kept it that way...
So what is going on -- is it just iTunes being hacked into or is it our apple accounts?
Looks like I'm in the same boat. Got notice this AM about some purchases on my iTunes account from Paypal, with no info as to what they were. So I logged into iTunes and found several in-app purchases for Kingdoms at war. Totaling around $120. I changed my password and called Apple.
The rep I spoke with couldn't help me, but offered to report the incident to the iTunes support folks, and I got a confirmation email from them shortly after.
I also filed a dispute with Paypal. Hopefully I'll be refunded without too much hassle.
This whole incident is rather disturbing...
Well you can add me to the list of people who had their account hacked. I have no idea exactly how my account got hacked, but here I am. Though I am a bit more fortunate that most of the people here, and so far they have only purchased a single application, but they may have gotten my CC info. Reported to iTunes and my CC company, and hopefully this issue gets resolved quickly.
Is this a tie in to all the other places being hacked recently, or a completely different group of hackers?
twice in 2 days for me!
Kingdom Conquest cleaned out my account 2 days ago...got an email from Apple this morning saying they had refunded me, then a few hours later got another receipt from KC saying it had cleaned out my account AGAIN!
I hadn't even logged back in after the refund....but had changed my password after the inital attack.
So whatever it is, is NOT using a password to get in...must be some backdoor/inside Apple issue.
Awaiting to see if I will be refunded again.
Thats because you arent ALLOWED to see it when you set up the account the first time: it isnt shown.
I just set up my niece on a new iPad she got for graduating... told her right off the bat to never give Apple CC info and DO NOT use the gift card I bought her for xmas until she had nearly the total amount of songs/apps/software in a wishlist in iTunes... and once she got that figure then only then to buy with the gift card or it will be stolen.
It is not a matter of IF but WHEN you will get ripped off, for anyone using iTunes... its multiple rip offs each day by the recording of this thread alone.
But back to the NONE button: you cannot have an iTunes account without first giving Apple your CC info.
I hate that fact.
But atleast what you can do when setting up a new account or one for your loved ones you can give a (has to be valid, it is checked before your account is activated) CC card and then IMMEDIATELY go back into your profile specs and then you see the NONE button.
I deleted the CC info and chose NONE, logged out, logged back in to make sure there was no CC info and that NONE was still selected, and have been ok ever since.
Whatever freaking lousy pretend EULA that Apple wants to push in my face now that apparently waives all responsibility of them for anything that goes wrong with my account or credit line if I get hacked again, they can go stuff themselves with it as I will not be paying for any song or app and not be giving them the data to allow the hackers to freely use.
If I 'cant live without that song' I will do the "CC data in, purchase, confirmation slip, remove CC data right away again" routine. Apple will have no recourse and no excuse then; and they also wont be giving me the 'you were hacked once, we dont refund for hacks more than once" excuse.
the stinking hackers can use their own CC info if they want to so easily and brazenly use my account to do something ********.
OK! This is a big deal. I was a little naive in thinking that it was an isolated incident a year or so ago, but I have switched off the CC info button on my account page. I just went to my 'Purchased' section of iTunes and found that I have a Christian music thief (ironic or oxymoron) hacking my account. I have no idea who these artists are. The hacker must have gotten in when I had a PayPal account set up for a very short time about 4 months ago. I decided to go back to a CC for simplicity. I am going to try and retrieve the info from that period. It is creepy.
Got an email from Apple the other day that they'll be refunding me the stolen credit in 5-7 business days. But they disabled my account pending an "investigation" that "could take several days". So now I'm locked out of my iTunes account and can't even download updates to things I've already purchased!
What the heck, Apple? Not only is your security garbage, but the customer is the one who gets penalized?? I already changed my password, why would you need to lock my account? Any investigation shouldn't need my account to be locked out. I am furious!
I've been strongly considering switching to Android, yet been reluctant because of all the iApps I'd already bought for my iPhone. But I guess now there's nothing holding me back. Goodbye, Apple.