A number of iTunes users have been targeted in a scam that has also been linked to Paypal. While both Apple and Paypal are not yet talking, the threat has been analysed by independent experts and is said to have originated from an e-mail scam and not directly through any flaw in the iTunes servers.
Security experts say that most of recent victims who had come forward had likely been scammed by phishing, which involves using fake websites set up especially to find out user passwords, account details, and login names. However, even if these scams didn’t originate with Apple themselves, the fact that they have over 150 million people’s credit card details on file puts them in a very responsible position.
While Apple will not comment on this issue, they have made a statement that new security measures have recently been implemented, saying that “iTunes is always working to prevent fraud and enhance the password security of all of our users”. Both Apple and Paypal are also tight lipped about the amount of people who had been targeted, although Paypal have already said that any unauthorised charges will be reimbursed.
This is great news for all of the people who have fallen victim of this scam, including one person who “just got hacked for $1,000 worth of software, videos and music”, and another who posted this to Facebook immediately after discovering the fraud – “My iTunes account just got hacked and someone made about $700 worth of purchases. I contacted Paypal and they said Apple has gotten so many attacks since June, they can barely keep up with reporting them all.”
While it is very difficult to blame either Apple or Paypal out-right for these phishing-based security breaches, the shear size of both companies is always going to make them big targets. It is vital for the future of the online economy that the big players are doing everything they can to restore consumer confidence by using all of the resources at their disposal to sort issues like this out.
