Consumer Affairs Victoria (CAV) has issued a warning to users of Apple’s iTunes store, after recent reports of unauthorised account access.
The notice issued June 14 was headlined “Beware of App Store fraud – News alert” and states that CAV is aware of the concerns.
The Global Mail published an article examining reports of Apple store security breaches on February 6.
“For more than a year, iTunes users have been reporting on online Apple customer forums that their accounts have been hacked, their gift cards spent, their PayPal accounts used or their store credit exhausted,” wrote Sarah-Jane Collins and Adam Glyde.
Since then Apple Insider reports that Apple has implemented new measures in order to ensure the safety of customer information, requiring users to provide security questions and backup email addresses.
Internet security expert Mark Gregory says that once cybercriminals have access to a system storing consumer’s private details, then that information can spread very quickly.
As such, Mr Gregory believes government agencies need to take further action to ensure multinational companies are taking the necessary measures to protect confidential data.
“It’s not just the money being lost, it’s the customer’s private and personal data and to some extent that’s more import than losing money,” said Mr Gregory in an interview with the Sydney Morning Herald on June 19.
Currently, any business which processes credit or debit card information is required to adhere to the Payment Card Industry Data Security Standard (PCI DSS), a list of regulations set down by several of the world’s leading payment card service organisations.
However the PCI DSS is not a simple one-size-fits-all policy and retailers of different size and scope will find that they are obligated to meet different requirements.
An external PCI DSS compliance test is therefore one of the most convenient ways to ensure your business is meeting its security needs and fully safeguarding customer information.
Apple suggests that iTunes users change their passwords frequently and only download App’s with a long track record of positive user experiences in order to minimise the chance of having their information stolen.