Attack on iTunes Accounts Through Phishing
Security experts at F-Secure have revealed that the main reason behind the recent hacking attacks on 400 iTunes accounts are the malicious activities of cyber criminals, according to the news published by itbusiness on July 12, 2010.
The security experts further state that it is unlikely that user's iTunes accounts were broken into by a Vietnamese iPhone developer, rather it is more likely that the consumer's credit card details were obtained with the help of phishing tricks or keyloggers. Besides, the accounts could have been accessed due to poor password practices.
After the hacking of a large number of iTunes accounts, Apple claimed that it was Vietnamese developer, Thuat Nguyen, behind all the hackings because he fraudulently used the accounts to buy software from the iTunes App store. These purchases created demand for 42 iPhone apps from a single developer.
Nguyen's apps were removed from the App store after Apple had charged him for violating the developer Program License Agreement that included fraudulent purchase molds.
On the other hand, security experts alleged that phishers were behind this iTunes accounts hacking and not the Vietnamese developer.
In addition, the experts believe that many more iTunes accounts have been hacked than just 400 claimed by Apple. It is a different scam case by an iPhone application developer.
Reacting to this incident, Apple has tightened the security on Apple store purchases and the consumers will be frequently asked for details like CCV number on their credit cards.
Moreover, Apple suggested users, who suspect fraud purchases, to contact their banks and cancel credit card. Apple also advised the users to change their iTunes passwords.
Commenting on the issue, the security researchers said that there was nothing new in such type of phishing attacks, usually launched through massive spam e-mail campaigns and steer users towards a fake iTunes account.
The first phishing attack targeting iTunes came into light two years ago in 2008 when phishers targeted the users of Apple iTunes music stores by sending spammed messages with the text that their iTunes accounts had some technical problem and they should correct this problem soon.
» SPAMfighter News - 22-07-2010