ZDNet has a long report on a recently hacked iTunes account that involved a linked PayPal account. We’ve seen an increase in the number of hacked iTunes accounts in which people’s gift card balance or linked accounts have been mysteriously drained.
This report, like many others, leaves us wondering how the hack occurred. Is it a flaw in iTunes that’s giving hackers access to accounts, does the user have an insecure password or did the user fall for a phishing scheme that somehow exposed their password?
The good news in the ZDNet report is that PayPal already reversed the charges for five of the seven fraudulent transactions. This incident should be a warning for iTunes users — you still need to guard your iTunes account password closely and you should choose a payment method that lets you easily reverse an unauthorized charge.