Is It Worth Taking Action against Apple?

LT3rryChan on 28/07/2016 - 15:35
Last edited 28/07/2016 - 15:57 by 1 other user

G'day all, wanted to ask what you would do in my situation of apple account being hacked.

From the top, my apple ID account got hacked, it was around 10pm weekend when I saw an app purchase notifying me was being made in Taiwan. I quickly logged into my account to check what was going on. While I had my e-mail opened in another tab, each minute that came, an e-mail saying it has changed Password, Credit Card, back up email, security question/answers were all being changed in front of my eyes!

The next thing was to call Apple, being at night the support center in AU was closed, so I had to call the US number. Got through, explained everything and the support tech guy said he will look into it and get back to me tomorrow and told him at least have the account locked also he mentioned it won't take more than 2 weeks. After a few days without a response, I called back and got through only to say this is a 'unique' case and that it will need to be escalated and have been following up every week as now I am unable to access my few thousand photos (icloud), my $160 worth of apple credits, basically all my personal information, contents and apps that was linked to it now won't function without it being updated which requires itunes.

Fast forward 1 month, I followed up and he said its still being looked at, and is now being investigated by their 'engineers', they didn't give me any time because its 'unique'. So I waited, and waited, fast forward 2 months…
My patience has worn thin and I really needed to use my account linked to this.
So I called up apple again and got to a different technical advisor operator, and he mentioned this wasn't escalated and had no one looking at it. I was shocked and explained the 3 months wait and downtime of all my access. He then told me he will ge tback to me within 24 hours to get me an update.
So the next day he called back thankfully but only to find that it was actually assigned to an engineer who to me didn't sound like he had intention of resolving. The new advisor told me he has limited access to what he can do and engineers had power to give back my account and told me to wait again within 3 days he will get back.
After 3 days he did get back only to tell me the engineer apparently cannot help getting the account back, what the hell.
I begged them to get it back, I told them I can prove my identity, the email was linked to my apple ID, and I still have access to my email, it had my device linked to it.
Whilst this waiting happened, the 'hacker' supposedly changed it to a 2 step verfication blocking all of Apple's power to unlock it, which was much too late if they had investigated earlier.
So they gave no reasons to why I cannot get my account back AT ALL, I can prove all my identity, yet they cannot, and now I don't have access to my purchased credits, my photos, music, apps purchased and in-app purchases, my icloud.
So the tech advisor only can send me an apple accessory as an appeasement to this 'unique' case which I find insulting.

So, should this make for a legal case or is this a futile approach?
What would you do?

  1. Accept an accessory ($80 phone case?) and let it be a lesson learnt to change password once a week to something sophisticated.
  2. Sue Apple and try to get back compensation for the 3 months downtime and the missing apps and photos/contents from icloud.
  3. ???
Mobile

Related Stores

Apple
Apple

Comments

  • pantsparty on 28/07/2016 - 15:38
    +5

    Did you have two factor authentication setup on your account?

    Edit - just read the entire story. Guess not. Lesson to anyone reading this - setup two factor authentication!

    • T3rryChan on 28/07/2016 - 15:41

      No, it was originally just a password + username login

      While waiting for the old technician to get back, one of the days I received an email saying 2step verification was activated, I called him and he said yes its most likely the engineer who has activated The 2 step verification for me.
      So I was OK, keep waiting… another few weeks I asked I got a SMS about it however my password and RF key was still missing. He said he will update me which he didn't get back once again.

      The NEW tech support guy told me no one activated this from Apple, so both our assumptions were that the hacker did.

  • spackbace on 28/07/2016 - 15:41
    +6
    1. Sue Apple and try to get back compensation for the 3 months downtime and the missing apps and photos/contents from icloud.

    Suing Apple… Oh damn… Thanks, I needed a laugh today!

    • [Deactivated] on 02/08/2016 - 14:48

      No No No, I encourage this person to sue Apple. I want to see what happens.

      10 years ago regarding a real estate purchase contract that saw me out about $2500 I asked my solicitor if I could sue the sellers, he said sure, pay him a $15,000 retainer and he would get started.

      Common sense told me it was not worth it.

  • SnoozeAndLose on 28/07/2016 - 15:41

    I dont think you have that much resources to sue apple.

  • dylanando on 28/07/2016 - 15:44
    +3

    Not good. This is a long shot but you can try and contact tim cook on his public email address: [email protected]

    • T3rryChan on 28/07/2016 - 15:45

      I got time on ozbargain, I got time to e-mail him, Worth a try?

      • dylanando on 28/07/2016 - 17:57

        Cant hurt. Id be pissed if I was you!

  • Gravy on 28/07/2016 - 16:10
    +2

    Not sure if its going to help but department of fair trading might be worth a shot.

    • T3rryChan on 29/07/2016 - 10:05

      I'll see what they say thanks.

  • wombok2 on 28/07/2016 - 16:40

    I think the question to ask is… Can you afford to sue Apple?

    Court battles are a lengthy process, times alot of time, money and doesn't guarantee a win. Do you time/resources for that?

  • snowcold on 28/07/2016 - 17:42

    I don't think you have enough to sue apple. They have a great track record on keeping the hackers out. The ones that get in, as far as I know, got the user's credentials using phishing or other means. So unless you can prove that the "uniqueness" in this case is actually Apple's fault, the outcome may not favour you. I would definitely look at escalating this with Apple first just like the others said

    • T3rryChan on 29/07/2016 - 10:05
      +1

      It's not their fault that my account got compromised, but they had full access 2 months before it became more restrictive with their 2 step veri.
      I had identification, I could prove 100% it is my account. The thing is they did not provide any reasons after 3 months. They said they couldn't help. They had it blocked which was great, but how hard is it to reset my password and send my account back? I would take them to court due to keeping the account away from me for no reason.

  • mintysaurus on 28/07/2016 - 17:50

    I've seen phishing emails recently saying a purchase for Adele's new album has been made through my account, but on closer inspection the email isn't sent by Apple and the link in the email is to a fake phishing site.

    Is that how the initial hack happened?

    Sorry I can't help with advice - I can't believe they can't recover your account :( Horrible

    • snowcold on 28/07/2016 - 18:26

      I can't believe they can't recover your account :( Horrible

      That is how security should be implemented. Meaning, only you have access to your data. If they can access it, even the NSA and hackers can access it.

      The part that is horrible is that they did not do anything for two months while they had access to the account. And if they had locked it during that time, there is no way the hacker would have got access to enable the two-factor authentication. Maybe he exploited a vulnerability with the apple's authentication mechanism and that is why they called it "unique". Because people getting locked out or their account getting hacked is not something new

      • T3rryChan on 29/07/2016 - 10:03

        I would agree with you, but not everyone has a good memory and these features of password retrieval has to be there.

        I've seen phishing emails recently saying a purchase for Adele's new album has been made through my account, but on closer inspection the email isn't sent by Apple and the link in the email is to a fake phishing site.

        I think it happened when I was on a "free" Wifi…

  • PartyNextDoor on 28/07/2016 - 20:18

    If you had access to the email address linked to the account why couldn't you do a password reset yourself to get it back?

    • T3rryChan on 29/07/2016 - 10:00

      an e-mail saying it has changed Password, Credit Card, back up email, security question/answers

      Hacker literally changed everything. I don't know how, but they did.

  • Mumbles on 29/07/2016 - 00:25

    I am unable to access my few thousand photos (icloud), my $160 worth of apple credits, basically all my personal information, contents and apps that was linked to it now won't function without it being updated which requires itunes.
    Fast forward 1 month, I followed up and he said its still being looked at, and is now being investigated by their 'engineers', they didn't give me any time because its 'unique'. So I waited, and waited, fast forward 2 months…

    You'd seriously have to discuss it with a solicitor to find out. You've articulated a few things.

    Unfortunately Apple always has an excellent team of lawyers. They have big dollars to sue Microsoft and Samsung. To tie them up in US courts for years.

    Australian law is not as generous when seeking damages as compared to the USA.

    For your own interest you can research your own consumer rights at the ACCC. Read the iTunes contract/Terms and Conditions.

    Personally, I've been scared of turning on iCloud especially hearing so many celebrities having their Apple accounts hacked and their cloud photos leaked.

    Its disappointing for Apple users but Google and Microsoft have less instances of celebrities being hacked.

    • T3rryChan on 29/07/2016 - 09:59

      I heard from news/blogs Apple have really good customer service and can resolve even hacked accounts.
      I had high hopes of getting my account back only to be brushed off with "Sorry can't help you" when they absolutely could have.
      I went through 4 customer service, 3 Apple advisor, 1 engineer… road blocked at the engineer, which I asked if there was another guy we can rely on only to get blocked with another "This is out of our scope of operation".
      Very disappointed, very.

  • eloquentloser on 29/07/2016 - 03:51
    +2

    I wouldn't accept anything less than a full refund covering everything that you have lost. Clearly Apple have contributed to this situation - they are far more in control of the security of your account than you are, and two-factor authentication is not a panacea for security and may be a liability in some cases. I would put everything in writing, however - send them a letter enumerating the lost value and noting that due to their inaction it's more likely that you'll be a victim of identity theft later on, for which you fully intend to hold them responsible. Just because Apple have 'a good team of lawyers' and lots of money doesn't mean they don't settle matters with disgruntled customers every day - you just don't necessarily hear about it.

    • T3rryChan on 29/07/2016 - 11:26

      Great advice and you know exactly what I'm thinking.
      With others here saying I can't afford or have the resources to go up against them I feel they don't understand the frustration and how far someone can go even the biggest of giants. It actually may even cause them more dramas if such cases like these go unnoticed or waived.
      If they still disregard bad publicity and negative reviews then they wouldn't be Apple today, so I am holding onto that chance that they will take responsibility of some sort to compensate at the very least.
      Or, they can just give me my account back!?

  • OZB Al on 29/07/2016 - 07:46
    +1

    Definitely don't get bought off with cheap crap! Id be interested what your state privacy commission says http://www.ipc.nsw.gov.au/

  • AJW on 29/07/2016 - 09:44

    The fact they 'guessed' your password and accessed your account isn't apple's fault - they provide security features you didn't use. Wouldn't that be their argument?

    • T3rryChan on 29/07/2016 - 09:52

      It's not their fault that my account got compromised, but they had full access 2 months before it became more restrictive with their 2 step veri.
      I had identification, I could prove 100% it is my account. The thing is they did not provide any reasons after 3 months. They said they couldn't help. They had it blocked which was great, but how hard is it to reset my password and send my account back? I would take them to court due to keeping the account away from me for no reason.

      • AJW on 29/07/2016 - 10:06

        I would say it isn't hard for them at all, but the reason they setup the extended security features is to avoid the customer support involved with this sort of thing. I'm not saying you have been treated well or they've done the right thing - they have obviously caused you a great deal of frustration, but because they weren't at fault their response isn't mandatory and linked to some kind of service agreement, and I can't see how you could sue them for your own mistake. Its a grey area, you are getting poor customer service, but it's not a paid service as such ?

        • T3rryChan on 29/07/2016 - 10:11

          There should SOME degree to Apple's obligation as a customer using their products & services to provide this type of support.

          Hacked by my mistake or their mistake, we still don't know. because they aren't saying anything either.

          What would you do? Be it Microsoft accounts, Google or Apple, it got compromised and the service provided decides not to help you.

        • AJW on 29/07/2016 - 10:29

          @T3rryChan: It is appalling how you have been treated, and scary to realise how vulnerable you are, and I would be as pissed as you are. I'm just pointing out that poor service wouldn't be a strong case for legal action. And imagine your lawyer trying to sift through the technical "who did what hacking" data they have.

          However I would itemize all your correspondence and keep trying to contact the right person. Best of luck :)

  • kaos on 29/07/2016 - 12:27

    as others have said, suing Apple is not going to work. What you need to do is make a claim through the CTTT, this will get Apple's complaint department involve and they will try to help you

    • T3rryChan on 29/07/2016 - 13:09
      +1

      Yes thanks kaos, I will go through CTTT and let them know what is going on.
      I'm curious to know as this case went to the states they may not have any power to speak with them although it reflects Apple AU.

      • Sweet3st on 29/07/2016 - 13:54

        I would negotiate hard with Apple, let them know how pissed off you are, and promise to post to every known forum, Mac user group etc to 'warn' others about their vulnerability. They don't want the bad publicity. With hindsight, maybe you should have pushed hard quicker, hacking a serious matter.

  • BargainKen on 30/07/2016 - 12:24

    Surely there's a password reset process for 2 factor authentication?

    Usually when people get out into these situations where companies can't help its because there isn't a well defined process for dealing with the issue and finding anyone with half a clue to resolve the issue is the hard part. I get this with Telstra all the time, I just usually hang up and start again till I get someone that can actually help.

  • kaos on 30/07/2016 - 15:54

    negotiation does not work, and you are way past the 2fa question. The only way you can get someone from Apple who has any power to listen to your case is to go to CTTT.

Login or Join to leave a comment
Login Join