Apple Sending Confirmation Emails To Combat App Purchase Fraud

It's a step in the right direction, but seems incomplete without an easy way to contact Apple regarding a fraudulent charge.

Doesn't this email sort of send the message that "we know your account may have been jeopardized, but we don't want to help you fix it"? :confused:

I got this months ago... not new like the others said.

This isn't new...:rolleyes:

To all the folks that said they got these emails a while ago and that it isn't new:

Why didn't you send it in? :-)

Because it didn't seem news worthy?

Does anybody know if it's possible to transfer your purchase history and account into a new username?

You can simply change your Apple ID on your account. You can't create a new account (with new ID) and transfer the purchases with it. Making a second account is a bad idea because they can not be merged together. Just change the Apple ID on your account to save you a lot of hassle.

Follow this link:
https://appleid.apple.com/cgi-bin/WebObjects/MyAppleId.woa/69/wa/directToSignIn?wosid=ex52wgHT0SbfvcBuEHQosM&localang=en_US

sign into your account, and where it says Apple ID, there should be a small 'edit' link in the right corner. Edit the Apple ID as you wish. (If no 'edit' then this means the ID is in use with, or has been in use with mobile me and can not be changed at all)

if you have devices, sign out of your iTunes account on all of them, and sign back in using your new ID.

To all the folks that said they got these emails a while ago and that it isn't new:

Why didn't you send it in? :-)

Didn't think it was new worthy tbh... still not convinced it is...

Glad Apple are getting wise to this.

I had my account hacked (a very old email account was compromised, and used to access the password recovery function).
As soon as I got the email, I knew something was up. My iTunes credit was drained (I participated in the gift card promotion for education this summer).

The CVV code entry is easily bypassed, if someone has the account password - all an attacker needs to do is remove the credit card. When the card information is removed, there is no barrier to the confirmation of the account on a new device. (No CVV needs to be entered) Of course, this is only worthwhile if you have iTunes credit on your account, but if you do, an attacker can buy apps with your account freely.

As a side note, it seems that Apple's been rolling this out - my email was for modification of the account info. Perhaps it's only done when a new device is activated without the CVV code, or when a potential attack vector is recognized.

Happy ending, though, Apple refunded all of the iTunes credit.

To all the folks that said they got these emails a while ago and that it isn't new:

Why didn't you send it in? :-)

Most people aren't bothered to send every email they get from apple in.

I got this message 5 weeks ago.

Wouldn't have considered this newsworthy. Also, just a few points... it's Apple ID, not AppleID (saying for the sake of consistency, as the article uses AppleID while the email in the image clearly says Apple ID). Also, things like stating the numbers being on the front of American Express cards is completely arbitrary and just isn't needed.