iTunes scam: How to protect yourself

The problem, it seems, is not with the iTunes software, but with users falling victim to simple scams

In recent weeks, more and more iTunes users have been reporting fraudulent activity on their Apple accounts, reporting hundreds or even thousands of dollars worth of bogus purchases. With the reports of this type of fraud on the uptick in recent weeks, many users have been quick to blame Apple or PayPal, as many of the affected iTunes accounts were linked to PayPal accounts.

Techworld: How to get free iTunes music

But the problem cannot be blamed on a software security flaw, nor can it be fixed with a quick patch. The problem, it seems, actually lies with iTunes users.

That's right: iTunes users are the app's big security flaw. Here's what you need to know in order to keep yourself and your iTunes account safe.

The Problem is in the Passwords

Hackers can make fraudulent purchases on iTunes accounts to which they have obtained the passwords. But these passwords were not obtained by breaking into Apple's servers; Apple sources tell CNET that "iTunes has not been compromised and the company is not aware of any sudden increase in fraudulent transactions."

Instead, it seems, hackers are obtaining passwords through good, old-fashioned phishing scams. iTunes users often don't know how their accounts were compromised, but it seems that many are simply handing out their user names and passwords without realizing it. Sometimes, they're doing so in hopes of getting a good deal -- by buying unauthorized iTunes gift codes online, for example.

The takeaway should be obvious, but it's worth repeating: Never reveal your iTunes user name and password to anyone except within iTunes itself.

You also should change your iTunes password regularly and choose a password that is secure.

Automatic Payments

Many users store their credit card or PayPal account information with their iTunes account, so they need to enter only a user name and password to make a purchase. Once that info is entered, the amount of your iTunes purchase is automatically charged to your credit card or PayPal account. If you don't check your billing statement regularly, hackers could rack up a good deal of iTunes charges before you even realize that your account has been compromised.

You have a couple of options to prevent this. One is to remove the credit card or PayPal account info that you have stored in iTunes. This means you'll have to enter it manually every time you want to make a purchase, which could become annoying. If you decide you want to keep the info stored in iTunes, you should be vigilant about checking your accounts. Check your account activity and balance regularly to make sure that there has been no unauthorized activity.

Available Remedies

What if there has been unauthorized activity? What should you do then? Apple recommends that all users contact their financial institution to discuss unauthorized charges. PayPal reportedly is reimbursing customers who've been hit with fraudulent activity on their accounts, and many credit card companies have standard policies in place to do the same.

Apple also suggests that users change their iTunes passwords immediately, which is easy enough if you still have access to your iTunes account. But some users have reported that the hackers have gone into their iTunes accounts and changed the passwords themselves -- leaving the actual account owner without access. In this case, you'll need to reset the password manually. To do this, you'll need your Apple ID and access to a linked e-mail account, or you'll have to answer the security questions that were provided when you created your Apple ID.

If you're thinking it would be easier to start over and simply cancel your account, well, that's not exactly the case. There is no link in iTunes that allows you to easily cancel your account; to do so, you'll have to contact Apple directly. And if you do decide to cancel your account, you could lose access to all of the content you've previously purchased from Apple's iTunes store.

Join the newsletter!

Error: Please check your email address.
Rocket to Success - Your 10 Tips for Smarter ERP System Selection

Tags online securityApplesecuritypaypalphishingiTunes

Keep up with the latest tech news, reviews and previews by subscribing to the Good Gear Guide newsletter.

Liane Cassavoy

PC World (US online)
Show Comments

Cool Tech

SanDisk MicroSDXC™ for Nintendo® Switch™

Learn more >

Breitling Superocean Heritage Chronographe 44

Learn more >

Toys for Boys

Family Friendly

Panasonic 4K UHD Blu-Ray Player and Full HD Recorder with Netflix - UBT1GL-K

Learn more >

Stocking Stuffer

Razer DeathAdder Expert Ergonomic Gaming Mouse

Learn more >

Christmas Gift Guide

Click for more ›

Most Popular Reviews

Latest Articles

Resources

PCW Evaluation Team

Ben Ramsden

Sharp PN-40TC1 Huddle Board

Brainstorming, innovation, problem solving, and negotiation have all become much more productive and valuable if people can easily collaborate in real time with minimal friction.

Sarah Ieroianni

Brother QL-820NWB Professional Label Printer

The print quality also does not disappoint, it’s clear, bold, doesn’t smudge and the text is perfectly sized.

Ratchada Dunn

Sharp PN-40TC1 Huddle Board

The Huddle Board’s built in program; Sharp Touch Viewing software allows us to easily manipulate and edit our documents (jpegs and PDFs) all at the same time on the dashboard.

George Khoury

Sharp PN-40TC1 Huddle Board

The biggest perks for me would be that it comes with easy to use and comprehensive programs that make the collaboration process a whole lot more intuitive and organic

David Coyle

Brother PocketJet PJ-773 A4 Portable Thermal Printer

I rate the printer as a 5 out of 5 stars as it has been able to fit seamlessly into my busy and mobile lifestyle.

Kurt Hegetschweiler

Brother PocketJet PJ-773 A4 Portable Thermal Printer

It’s perfect for mobile workers. Just take it out — it’s small enough to sit anywhere — turn it on, load a sheet of paper, and start printing.

Featured Content

Latest Jobs

Don’t have an account? Sign up here

Don't have an account? Sign up now

Forgot password?