Notices

iTunes hacked?

Old 11-05-2014, 05:04 AM
  #1  
Admirals Club Admiral's Club Member
Thread Starter
 
Join Date: Oct 2008
Location: SEC Penna
Posts: 8,760
Default iTunes hacked?

Can't find any official news report but our Info Sec dept just issued a warrning so I suspect details are coming.

Passwords and email addresses (iTunes store payment info?) for 3.8 million users stolen.

Last edited by kone; 11-07-2014 at 05:33 AM.
kone is offline  
Old 11-05-2014, 05:06 AM
  #2  
Senior MemberCaptains Club Member
PLEDGERPLEDGERPLEDGERPLEDGER
 
Snapper Head's Avatar
 
Join Date: Mar 2002
Location: Republic of West Florida - the ORIGINAL lone star state
Posts: 17,780
Default

No way.

iTopia is perfect, and could never be hacked. Even the cloud,,,um, oh, wait.....


Big Al
Snapper Head is offline  
Old 11-05-2014, 11:22 AM
  #3  
Senior Member
 
Join Date: Jun 2014
Posts: 1,032
Default

Link or it didn't happen.

Also, this is why I don't have my credit card number attached to my Apple iTunes account. Those gift cards are handy and every so often I get myself a gift.
2muchcoffeeman is offline  
Old 11-05-2014, 07:38 PM
  #4  
Senior MemberCaptains Club Member
 
Join Date: Feb 2002
Location: Saugus, Ma. USA
Posts: 11,138
Default

I'm skeptical. I watch a cve rss feed daily, and read securitynewsportal and wsj every day. While I don't see every exploit, I think I would have noticed this one.

Maybe they were warning you of an itunes phishing scam?
jobowker is offline  
Old 11-06-2014, 03:50 AM
  #5  
Admirals Club Admiral's Club Member
 
Join Date: Jul 2006
Location: Bermuda
Posts: 892
Default

Report out this morning about a virus attacking Iphones, Ipads etc.
edale99 is offline  
Old 11-06-2014, 07:45 AM
  #6  
Admirals Club Admiral's Club Member
Thread Starter
 
Join Date: Oct 2008
Location: SEC Penna
Posts: 8,760
Default

Originally Posted by jobowker View Post
I'm skeptical. I watch a cve rss feed daily, and read securitynewsportal and wsj every day. While I don't see every exploit, I think I would have noticed this one.

Maybe they were warning you of an itunes phishing scam?
Here's the text of the email. I removed indentifying stuff.

"We have been alerted by our security monitoring service that iTunes was hacked and 3.88 Million email addresses and passwords were published."


Originally Posted by edale99 View Post
Report out this morning about a virus attacking Iphones, Ipads etc.
Originally Posted by 2muchcoffeeman View Post
Link or it didn't happen.
Well it might not be exactly as I posted but...might be worse...enjoy.

http://www.marketwatch.com/story/pal...ist=lcountdown
kone is offline  
Old 11-06-2014, 09:11 AM
  #7  
Admirals Club Admiral's Club Member
 
Join Date: Jun 2010
Location: Brooklyn, NY (Bay Ridge)
Posts: 14,656
Default

Why care, really?

Your info is EVERYWHERE and just about every business has been hacked.
Esuomm1 is offline  
Old 11-06-2014, 09:33 AM
  #8  
Senior Member
 
jdm61's Avatar
 
Join Date: Sep 2010
Posts: 7,662
Default

Hmmmm. Doesn't this actually strengthen the argument that Apple's vertical integration model is best? I am no computer dweeb, but from reading the article, it appears to me that the threat comes from third party app sources for the most part.
jdm61 is offline  
Old 11-06-2014, 03:17 PM
  #9  
Senior MemberCaptains Club Member
 
flyau98's Avatar
 
Join Date: Jun 2005
Location: The Blackwater River, FL
Posts: 3,421
Default

Not true...and the current "sky is falling" malware is only coming from a illegitimate App Store....
flyau98 is offline  
Old 11-06-2014, 06:49 PM
  #10  
Senior MemberCaptains Club Member
 
Join Date: Feb 2002
Location: Saugus, Ma. USA
Posts: 11,138
Default

Originally Posted by kone View Post
Here's the text of the email. I removed indentifying stuff.

"We have been alerted by our security monitoring service that iTunes was hacked and 3.88 Million email addresses and passwords were published."






Well it might not be exactly as I posted but...might be worse...enjoy.

http://www.marketwatch.com/story/pal...ist=lcountdown
Ah. You were referring to Wirelurker. That makes sense now, as I did see that on securitynewsportal, which tends to be the place I look every day:

http://securitynewswire.com/security...own_Threatpost


It just means that wirelurker WAS a threat that could have potentially been a risk for 800 million devices. It's already been remediated.

Basically, Palo Alto discovered the vulnerability, verified that it could indeed attack non-jailbroken phones, and then a fix was put in place to fix it. Malware on PC's is nothing new, and Macs are susceptible as well, which I've been saying all along. It's just that it's a little more difficult to infect a Mac, and most viruses were written for windows.

The clever thing about wirelurker is that it infects a Mac (not that hard to do) but then it uses the infected Mac to infect usb attached iphones or other ios devices.
jobowker is offline  
Old 11-06-2014, 09:43 PM
  #11  
Senior Member
 
Join Date: Jun 2014
Posts: 1,032
Default

Originally Posted by kone View Post
Here's the text of the email. I removed indentifying stuff.

"We have been alerted by our security monitoring service that iTunes was hacked and 3.88 Million email addresses and passwords were published."






Well it might not be exactly as I posted but...might be worse...enjoy.

http://www.marketwatch.com/story/pal...ist=lcountdown
The only evidence that Google could find for 3.88 million Apple accounts hacked was this thread, and that's a story that would break everywhere. I've been looking for any such news stories and they're just not out there.

The only recently active threat against Macs and iOS was limited to China and is already shut down. WireLurker Mac OS X Malware Shut Down | Threatpost | The first stop for security news

You should have posted the sender's identifying information (including the full email headers), because I'm concerned you got phished.
2muchcoffeeman is offline  
Old 11-07-2014, 01:44 AM
  #12  
Senior Member
 
Join Date: Jul 2011
Location: SOBX
Posts: 462
Default

Related article:

http://iphone.appleinsider.com/artic...-ios-mac-users
DrDanH is offline  
Old 11-07-2014, 02:19 AM
  #13  
Admirals Club Admiral's Club Member
Thread Starter
 
Join Date: Oct 2008
Location: SEC Penna
Posts: 8,760
Default

Originally Posted by 2muchcoffeeman View Post
You should have posted the sender's identifying information (including the full email headers), because I'm concerned you got phished.
No and no. I work for a very large mutual fund company and we were told by our Security folks exactly what I posted above. We are extremely diligent when it comes to IT security so where there's smoke there's fire. I agree though that the lack of confirming news reports is odd and I said so.
kone is offline  
Old 11-07-2014, 05:35 AM
  #14  
Admirals Club Admiral's Club Member
Thread Starter
 
Join Date: Oct 2008
Location: SEC Penna
Posts: 8,760
Default

FWIW I just double-checked w/ our Info Sec and they confirmed. They advised changing iTunes passwords.
kone is offline  
Old 11-07-2014, 06:01 AM
  #15  
Admirals Club Admiral's Club Member
 
Join Date: May 2008
Location:
Posts: 3,523
Default

I was hoping it was hacked to allow free downloads ....LOL A buck or more a song are they nuts !!! I have Tera bytes of music !!! All from Lp's or CD's
Tommysmicroskiff is offline  
Old 11-07-2014, 09:44 AM
  #16  
Senior Member
 
Join Date: May 2013
Location: Goooooose Creek
Posts: 1,054
Default

Already had to get a new credit card for all the things someone purchased on my old eye account.
Happened a couple weeks ago.
friogatto is offline  
Old 11-07-2014, 09:46 AM
  #17  
Senior MemberCaptains Club Member
 
Join Date: Mar 2001
Location: Rocky Point FL
Posts: 8,436
Default

2 things I really don't like child molesters and iTunes
r.waddill is offline  
Old 11-07-2014, 12:20 PM
  #18  
Senior Member
 
Join Date: Jun 2014
Posts: 1,032
Default

Originally Posted by Tommysmicroskiff View Post
I was hoping it was hacked to allow free downloads ....LOL A buck or more a song are they nuts !!! I have Tera bytes of music !!! All from Lp's or CD's
How much does a 10- to 12-song CD cost?

Originally Posted by friogatto View Post
Already had to get a new credit card for all the things someone purchased on my old eye account.
Happened a couple weeks ago.
I pulled my credit card number from iTunes over Labor Day weekend 2013 when I got a string of emails from Apple confirming that I wanted to change my password. Well ... no, I didn't. Nothing but Apple gift cards since then.

It also helps keep me on a music budget.
2muchcoffeeman is offline  
Old 11-07-2014, 12:21 PM
  #19  
Admirals Club Admiral's Club Member
Thread Starter
 
Join Date: Oct 2008
Location: SEC Penna
Posts: 8,760
Default

Originally Posted by 2muchcoffeeman View Post
How much does a 10- to 12-song CD cost?
Most are $9.99, some $7.99. Amazon is usually cheaper.
kone is offline  
Old 11-07-2014, 04:41 PM
  #20  
Admirals Club Admiral's Club Member
 
Join Date: May 2008
Location:
Posts: 3,523
Default

Buck a piece at thrift and Pawn shops ... Plus I OWN it and can play it on the device of my choice !!!

How much does a 10- to 12-song CD cost?
Tommysmicroskiff is offline  

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are Off
Pingbacks are On
Refbacks are Off


Thread Tools
Search this Thread