07-04-2010, 03:47 PM | #1 |
Ebook Reader
Posts: 605
Karma: 3205128
Join Date: Nov 2009
Location: Texas
Device: Kindle 3, HTC Evo, HTC View
|
Massive iTunes hacking/stolen money underway at this time
Better check your iTunes account, there is news of massive hacking of Apples App store, specifically the iBook section. See the news section in this forum for more...
|
07-04-2010, 03:53 PM | #2 |
eBook Enthusiast
Posts: 85,544
Karma: 93383043
Join Date: Nov 2006
Location: UK
Device: Kindle Oasis 2, iPad Pro 10.5", iPhone 6
|
It may be a little early to use the word "massive". The reports simply say that they have been contacted by "a number of people". Of course, changing one's password may be a useful safety precaution anyway. Just checked my account and nothing amiss.
|
Advert | |
|
07-04-2010, 03:57 PM | #3 |
Ebook Reader
Posts: 605
Karma: 3205128
Join Date: Nov 2009
Location: Texas
Device: Kindle 3, HTC Evo, HTC View
|
Actually these are the headlines from tech news sources just about everywhere, not my words. Now there are reports of thefts in the thousands, and worldwide. All of this from a rogue app developer.
|
07-04-2010, 04:16 PM | #4 |
Wizard
Posts: 1,449
Karma: 58383
Join Date: Jul 2009
Device: Kindle, iPad
|
Don't we get e-mail receipts each time a purchase is made through iTunes? (Unless hackers are changing our e-mail addresses, too?) I buy barely anything from iTunes or iBooks.
|
07-04-2010, 04:21 PM | #5 |
Zealot
Posts: 134
Karma: 184000
Join Date: Jun 2010
Location: Colorado
Device: Nook classic, Nook Simple Touch, Nook HD
|
That is what my daughter just told me -- that an email is sent confirming each purchase on your account.
|
Advert | |
|
07-04-2010, 04:27 PM | #6 |
.
Posts: 3,408
Karma: 5647231
Join Date: Oct 2008
Device: never enough
|
You get an email confirming purchases-but not necessarily right away-sometimes they group a few together...regardless, its easy enough to check your account in iTunes-no problems here.
|
07-04-2010, 04:35 PM | #7 |
eBook Enthusiast
Posts: 85,544
Karma: 93383043
Join Date: Nov 2006
Location: UK
Device: Kindle Oasis 2, iPad Pro 10.5", iPhone 6
|
I am a little unclear; if a rogue app developer can make purchases against one's account without knowing one's current password, how will changing the password help?
|
07-04-2010, 04:41 PM | #8 | |
Ebook Reader
Posts: 605
Karma: 3205128
Join Date: Nov 2009
Location: Texas
Device: Kindle 3, HTC Evo, HTC View
|
Quote:
I had my checking account hacked one time last year, and within one day I had bought makeup in the UK, airline tickets in Chile, and herbal junk from Utah, even more until my account was cleaned out. |
|
07-04-2010, 04:49 PM | #9 |
eBook Enthusiast
Posts: 85,544
Karma: 93383043
Join Date: Nov 2006
Location: UK
Device: Kindle Oasis 2, iPad Pro 10.5", iPhone 6
|
Possibly a dictionary-based attack program is finding accounts with weak passwords? Sounds as if it may be something like that. A "golden rule" is never to use a password that's in the dictionary. I see now what's happening, though - the account is being hacked and then purchases made against "junk" books that the criminal has uploaded to the iBookstore. If that is the case, this will probably only affect people with accounts on the US iBookstore since that's currently the only one that permits individuals to upload books for sale.
|
07-04-2010, 04:59 PM | #10 |
Ebook Reader
Posts: 605
Karma: 3205128
Join Date: Nov 2009
Location: Texas
Device: Kindle 3, HTC Evo, HTC View
|
I'm seeing reports that it's definitely in the UK and probably worldwide. YMMV. I'm not trying to bring bad news, I just want people to give this a heads-up.
|
07-04-2010, 05:07 PM | #11 |
eBook Enthusiast
Posts: 85,544
Karma: 93383043
Join Date: Nov 2006
Location: UK
Device: Kindle Oasis 2, iPad Pro 10.5", iPhone 6
|
Really, having a non-guessable password is all that anyone can do. Unless someone's actually hacked into Apple's security system (which is rather unlikely), if they don't know your e-mail address and password, they can't get into your account.
|
07-04-2010, 05:12 PM | #12 |
Ebook Reader
Posts: 605
Karma: 3205128
Join Date: Nov 2009
Location: Texas
Device: Kindle 3, HTC Evo, HTC View
|
It will be interesting to see how a rogue developer could get away with something like this. I know that Apple is aware of it, but they are not making any comments.
|
07-04-2010, 05:18 PM | #13 |
eBook Enthusiast
Posts: 85,544
Karma: 93383043
Join Date: Nov 2006
Location: UK
Device: Kindle Oasis 2, iPad Pro 10.5", iPhone 6
|
Given, though, that developers/authors don't get money from app/book sales instantly, but are paid monthly by Apple, all that's probably going to happen here is that the "rogue" books will be deleted, and the "sales" reversed. I seriously doubt that anyone's going to lose any money, or the hacker make any.
|
07-04-2010, 05:28 PM | #14 |
Addict
Posts: 326
Karma: 960
Join Date: Jul 2009
Location: Florida, US
Device: Kindle DX, iPad
|
Interesting, thanks for the heads up.
Secure passwords nowadays need to have: -at least 8 characters -include at least one: uppercase, lowercase, number, special character At least that's what I learned in a malware/software vulnerabilties grad class last year. Maybe the requirements have increased since then. |
07-04-2010, 05:42 PM | #15 | |
eBook Enthusiast
Posts: 85,544
Karma: 93383043
Join Date: Nov 2006
Location: UK
Device: Kindle Oasis 2, iPad Pro 10.5", iPhone 6
|
Quote:
|
|
|
Similar Threads | ||||
Thread | Thread Starter | Forum | Replies | Last Post |
Massive hacking of iTunes accounts happening right now! | vaughnmr | News | 64 | 07-08-2010 08:50 PM |
1st time owner - Advice on personalizing, improving, hacking? | Jonahcz | Sony Reader | 7 | 05-14-2008 10:50 PM |