Apple helps you protect your iTunes Store account

If you have recently purchased one of Apple's mobile devices, you most likely have set up an iTunes Store account to easily access music, movies, podcasts, and applications. But are you safe against phishing attacks on your account?

If you have recently purchased one of Apple's mobile devices (iPhone, iPad, iPod), you most likely have set up an iTunes Store account to easily access music, movies, podcasts, and applications. Occasionally users report phishing attacks (e-mails designed to trick people into giving third-party hackers password information) that target iTunes Store accounts. The following article details what to do if your account is compromised and some best practices for keeping it secure in the future.

The first rule of thumb is to never enter your iTunes Store account information in any Web site that is not Apple's and to never open any attachments from e-mail addresses that are unknown to you, even if the e-mail looks like it could be from Apple.

If you think you may have received a phishing attack via e-mail, you can alert Apple using this email address: reportphishing@apple.com.

As more and more people switch to iPhone and other Apple mobile products, these phishing attacks are likely to get more prevalent. The key to protecting your iTunes Store account, as with many online accounts, is password security.

If you find that you can no longer log in to your account, or if you receive e-mail invoices for purchases from the iTunes Store that you did not make, follow these steps:

  1. Go to Apple's iForgot Web site. iForgot will allow you to reset your account information to regain control of your account. When choosing a password, following simple rules can help you choose a safe and difficult to crack password. First, choose something that does not appear in a dictionary (using numbers to replace letters in a word and adding unique characters, such as exclamation points or question marks can greatly increase security) and be sure that your iTunes Store password is not shared with any of your other online accounts.
  2. Let your financial institution associated with your iTunes Store account know about the fraudulent charges.
  3. If you are unable to get access to your account using iForgot or if unauthorized charges on your account were made using an iTunes Store credit, contact iTunes Store Support immediately.
Apple

More tips to keeping your account secure

Always log out of your iTunes Store account after you complete your purchases. Many accounts are compromised because users leave their information logged on to a publicly accessible computer. Logging out prevents would-be wrong-doers from gaining access to your account. As mentioned above, use a different password for each of your online accounts. Of course, with the amount of Web sites that require password authentication, this may seem nearly impossible. Try using applications like 1Password on the Mac to help manage your security.

You should also be careful how you share your password. The best process for this? Don't do it. Keeping your password to yourself is the best way to ensure no one else will be able to access your account. The same can be said for the secret question security provision (when signing up for an iTunes Store account). Be sure the answer is only something you will know. You should also get in the habit of changing your passwords. Try setting a calendar event to remind you every couple months.


Be sure to check us out on Twitter and the CNET Mac forums.
Submit a fix to MacFixIt! E-mail Us.

About the author

    Joe is a seasoned Mac veteran with years of experience on the platform. He reports on Macs, iPods, iPhones and anything else Apple sells. He even has worked in Apple retail stores. He's also a creative professional who knows how to use a Mac to get the job done.

     

    Join the discussion

    Conversation powered by Livefyre

    Show Comments Hide Comments