What's new
By:

Someone got my iTunes account!!!

W

wdpower

iPF Noob
So Amex calls me today and asks me if the three charges for forty bucks each from iTunes is mine. I check my iTunes account and find some has been buying music since yesterday afternoon on my account. The only time i access my account is on my iPad. I've started the pleasantries of changing passwords, just wintering how this happened.

I've now been on hold with apple for a half an hour listening to some horendice crap music.

Man am i freaked out, never had my info stolen before.
 
Make sure you also check for any other charges and get them on hold asap. I would also change any other accounts that you have and use the same password for. Good luck and sorry to hear about this - I hate thieves!
 
My account was hacked a month or so back. My bank called asking if I'd spent about £40 on iTunes, which I hadn't. When I logged into the iTunes store, the regional settings were now Chinese and they had bought a few apps and games.

My credit card issuer gave me the money back no problems but it made me realise how insecure the app store is, I still don't think it's right that you can make purchases with just a single password. All other services I use at least employ mastercard's securecode system, apple use sod all.
 
So far they have my account up to $800.00 Apple says there is nothing they can do, they can't remove the pending purchases or anything. I basically need to keep getting new credit cards and putting them on there and dispute them all.

One guy at apple told me that I should log out of my iTunes account on my iPad after each use.

I don't know if this is because of the JB on my iPad or not but first thing this am I restored the ipad fully and changed my password again.
 
Could have been a number of things.

I would also change the password on my email account. If they get your email password they can just read through your emails for any companies that your signed up with and then visit the site to request your password reminder be emailed to you where they could then read it and delete the message without you even knowing.
 
Well it took a couple of days and about seven calls. They finally got all the pending purchases off my account and reset my password. They say I should be all set. We'll see.
 
is your email a Gmail account?

If so they have some new security features, you can go into the settings and get the IP address and locations of where you have signed in. See if someone in another state/country has been signing in. The IP could be used to track down the person and im sure your CeditCard company would be interested in knowing the info for their investigation.
 
wdpower said:
I don't know if this is because of the JB on my iPad or not but first thing this am I restored the ipad fully and changed my password again.
Click to expand...

Did you change to root password when you did the jailbreak? Do you use open wifi networks to make purchases?
 
@mike, my email was a com cat account. And the real strange part was that apple kept trying to email me things reset passwords and stuff and i wasn't getting any of it. I called comcast yesterday and we found that my email was set to reject all emails???

@bill, I don't know anything about the root password and most purchases and dl'ds are done at work on an access point were we
Each have our own ip, at home with encryption, or on the 3G network.

I think what may have happened is one of the guys here at work went into something I won't discuss on here and put something I shouldn't have had on the iPad which i think may have been compromised to get my information.
 
What look like happened is your comcast email account was compromized.

They looked through it for and emails and spotted one from apple.
They went to apple and requested your password since they have access to your email apple just sent the password over, they read it and deleted the message.
Then once they had your account login and password they set your email account to delete new incoming messages so that you wouldnt notice all the new purchase emails apple sends when you buy stuff on iTunes.


if it was due to your iPad or not we probably wont know, but it seems that your Comcast email account what got compromised.


You may want to think about switching over to a free Gmail account. You will get a ton of more storage space. They have an awesome spam detection system, and you can look at who has logged into your account in the past, where they were from and what their IP address was.
 
Last edited:
i'm dealing with a similar issue. i woke up yesterday to my bank calling me letting me know of $1050 in itunes purchases.

i log into my itunes account and see a bunch of charges for 'in app' purchases for virtual poker chips comming from the zynga app 'live poker 7k free' only problem is that I don't have this app installed on my ipad or any other 'idevice'

I'd be interested to hear what was bought on the OP's itunes account.

My Ipad is jailbroken, and I did take precaution and change the root password (seeing as cydia tells you to do that!) and I never bought anything (to my knowledge) over any unsecure wifi. i mainly use my own secure wifi (spa) or i use the att 3g.

I really want to figure out how the attackers got my itunes account info. and what they have to gain by buying these virtual poker chips.

i've only installed a handfull of JB apps: backgrounder, sbsettings, mywi (and that weird ROCK licensing program that get's installed with mywi) winterboard, fullforce, activator, open ssh, and a few themes i found in the cydia installer, which i've since deleted.

Could there be a rogue app / theme or some other vunerability in cydia or ROCK that compromises security of our idevices and sends our itunes info to theives? I don't know but it sure seems like it.

i've since changed my itunes password and removed my credit card from my itunes account, and working with apple (what a joke, they dont' have phone support for stuff like this, and they take forever to reply to email) and zynga to get refunds.

so far zynga has actually replied to my email asking for a refund and for device info related to unauthorized charges, but they say "they can't find the transactions"

just thought i'd add my 2 cents in here and let people know about my experience.
 
You must log in or register to reply here.

Most reactions

Similar threads

M
Apple account blunder.
Replies
6
Views
2K
twerppoet
twerppoet
J
I have a new computer and want to move my itunes account to the new computer.
Replies
1
Views
8K
twerppoet
twerppoet
55julie55
Duplicating itunes account on second pc
Replies
9
Views
5K
55julie55
55julie55
D
Question about iTunes - multiple user accounts on the mac
Replies
0
Views
3K
dj r
D
A
iTunes error: Your request could not be completed
Replies
6
Views
30K
col.bris
col.bris

Latest posts

Back
Top