Got a tip for us?
Let us know
Become a MacRumors Supporter for $50/year with no ads, ability to filter front page stories, and private forums.
Apple: About 400 Accounts Affected, App Store Not Hacked
- Thread starter MacRumors
- Start date
- Sort by reaction score
OMG!
There are 9 posts in here already that say that Apple is not to be blamed. Can Apple ever be blamed for anything???????!!!!!!! Talk about the ultimate fanboys.
Apple has really become the "Spin Zone" lately and can do no wrong. Anyone ever think about why they have so many disappointed iPhone 4 customers and the rushed release which obviously had nothing to do with quarterly earnings? Or maybe the fact they created a "bumper" i.e. band-aid for their design flaw?
I understand that they have stock holders to answer to but can they at least own up to something? Sometimes owning up to something proves you are not without flaw but at least willing to listen.
Did Steve finally get a hold of the Microsoft 101 book? He really is executing it nicely.
There are 9 posts in here already that say that Apple is not to be blamed. Can Apple ever be blamed for anything???????!!!!!!! Talk about the ultimate fanboys.
Apple has really become the "Spin Zone" lately and can do no wrong. Anyone ever think about why they have so many disappointed iPhone 4 customers and the rushed release which obviously had nothing to do with quarterly earnings? Or maybe the fact they created a "bumper" i.e. band-aid for their design flaw?
I understand that they have stock holders to answer to but can they at least own up to something? Sometimes owning up to something proves you are not without flaw but at least willing to listen.
Did Steve finally get a hold of the Microsoft 101 book? He really is executing it nicely.
Oh,....
No, ..Um ..
Yeah .......You Are correct and not a nut-job at all !
You "Clearly" understand sarcasm and can also throw it back ( I hope )
Probably thinks 8 stars ******** or his name in reverse is a strong password.
Star, star for everyone! =)
While some zealots are over the top, Apple is not at fault, here. Unless evidence comes out that their servers were hacked to obtain the account info, but that hasn't happened. How about a little perspective?
I had my cc info stolen at a fast food joint. I was out for blood. But it's not like the corporation behind Taco Bell is at fault. I called my bank about it, and the cops, and had my money back within 24 hours and a new card within 5 days or so. There are laws about these things, at least in the USA.
Seems like the best route don't you think? Otherwise, people that are now complaining about having to enter their password and CCV numbers because of this - will also be the same ones complaining when their own account gets hacked and crying foul because Apple did nothing to thwart it.
Pick your poison.
Yes, in certain circumstances. More likely to see a dictionary type attack than a straight brute-force though. It doesn't make any sense in this situation though. Three failed login attempts and you're locked out.
A more likely scenario is that these users used the same password somewhere else and he got ahold of that.
My wife's iTunes account was hacked not to long ago. Apple might not be at fault but there is a lot more than could have done to help.
My wife found out about it when I kept bugging her to update an app. When she tried doing it on the iPhone it said her password was wrong. She tried it on the desktop and got the same report. I told her to click the "I forgot my password" link and was told the username did not exist.
Turns out the hacker changed her username, password and security questions and then started buying apps (and a couple of albums). Apps included a map of Beijing.
What could Apple have done to make this better? They could have sent an email to her original email address (account name) to inform her of the change or even maybe ask her to confirm that change.
iTunes does not have phone support. If you have not bought an Apple device in the last 90 days they have to get approval to give you phone support.
The guy I talked to in the end suggested that we not use email addresses as the account name. Of course, we aren't allowed to choose an account name that is not an email address.
Another thing that Apple could do is turn off the app or music that was purchased fraudulently. They should add that capability if it doesn't already exist.
The only thing Apple lost in this was electrons. They gained sales (as did the app developers) and profits. There were even charges that had not gone through because the bank shut down the card and Apple still wanted my wife to pay for those charges. In the end she had to buy a gift card to pay for those charges and Apple refunded the cost of the gift card.
She did not reveal her password through phishing schemes. Maybe someone was able to guess it but it was a pretty good password.
My wife found out about it when I kept bugging her to update an app. When she tried doing it on the iPhone it said her password was wrong. She tried it on the desktop and got the same report. I told her to click the "I forgot my password" link and was told the username did not exist.
Turns out the hacker changed her username, password and security questions and then started buying apps (and a couple of albums). Apps included a map of Beijing.
What could Apple have done to make this better? They could have sent an email to her original email address (account name) to inform her of the change or even maybe ask her to confirm that change.
iTunes does not have phone support. If you have not bought an Apple device in the last 90 days they have to get approval to give you phone support.
The guy I talked to in the end suggested that we not use email addresses as the account name. Of course, we aren't allowed to choose an account name that is not an email address.
Another thing that Apple could do is turn off the app or music that was purchased fraudulently. They should add that capability if it doesn't already exist.
The only thing Apple lost in this was electrons. They gained sales (as did the app developers) and profits. There were even charges that had not gone through because the bank shut down the card and Apple still wanted my wife to pay for those charges. In the end she had to buy a gift card to pay for those charges and Apple refunded the cost of the gift card.
She did not reveal her password through phishing schemes. Maybe someone was able to guess it but it was a pretty good password.
I think you answered your own question.
I never apply the security updates that show up in Software Update. It's pointless, because there could not have been any security holes in the first place!
Even using the same email on a forum is bad security, a malicious forum could collect email and passwords combinations. Many use the same password for there iTunes account.
Clearly you are ignorant.
If someone hacked Apple and got access to a database with 120 million passwords, why did they choose to just pick 400 random passwords to use in their little scheme.
See what happens when you apply logic to your illogical rantings?
I use gift card when i need to buy something and i try not to leave any credits. Problem solved.
P.S.
If Apple account information was gathered not through security holes in Apple servers I can't see how it's Apple's fault.
P.S.
If Apple account information was gathered not through security holes in Apple servers I can't see how it's Apple's fault.
A while back, the store I worked at got about 15-20 (no joke) of the roughly 45-60 items that were made with the wrong part (and thus shorting out). Staggered ordering, etc. - random chance and we got about a 3rd of all of them!
Improbable is not Impossible.
What a waste? I am quitting posting for now. These nights I'll turn to http://www.taoteching.org/
Ta ta,
The New Eyes
Ta ta,
The New Eyes
Lately I have been asked the iTunes password whenever I'm not downloading anything, usually whe I wake the phone, never happened before.
I always press cancel, still is weird.
Ever happened to you?
I always press cancel, still is weird.
Ever happened to you?
I bet more then 400 credit cards get phished a day on the internet. We are talking 2.6e-6% of iTunes accounts were hacked.
You may have an update lost in limbo. Its happen to me a few times when an updated failed to download.
I never said I knew them personally, but if you took the time to read some of the many forum postings, you can actually count at least 30 people who have been compromised this weekend...
Relax, I wasn't talking literally, they are not my closest friends...
The best part about this whole thing is the people who had their accounts drained can not blame Apple at all.. It's the fault of the user, for having a bad password, or not knowing anything about computers, or some other lame excuse.. God forbid Apple steps out, and makes it easy for us to actually deal with this instead of sending out a copy and paste emails telling US to deal with it, and "change our password"...
To all you kids on the soapboxes who claim Apple is no way at fault here, again, wait until someone takes your money, and don't give a crap about you..
Then we'll see how much you'll sit back and accept it was all your doing, and work hard to get your money back..
I love Apple and their products as much as the next person, but c'mon people, for the love of God, stop treating them like they can never do wrong..
Are you all brainwashed?
And can someone please explain to me, if ONLY 400 accounts were compromised, how exactly did the Apps in question make the top 50? My account was used to purchase ALL of those apps and suddenly they are in the top 50..
So if Apple's logic is true, you are telling me it only takes 400 of the thousands of Apps on the store to crack the top 50?
Somehow, I really don't believe that..
