Building iPhone Apps - Blog - Avoid security breach through iTunes Connect

Wednesday

Aug012012

Avoid security breach through iTunes Connect

Wednesday, August 1, 2012 at 8:42 | tagged

Are you a user of AppAnnie or AppFigures or any service that depends on Apple's iTunes Connect as their data data source? If you answered yes, then you must follow Marco Arment advice: create a specific user for these service instead of giving them your own iTunes Connect credentials. The problem is if those services are compromised and then your iTunes Connect credentials could be at risk. Instead of using your main iTunes Connect user to get access to sales reports, why not create a specific user for this task with much less power. iTunes Connect provides a granular user role definition, use it!

Update on Thursday, August 2, 2012 at 9:03 by

JF Martin

Yesterday I created a new Apple ID in order to be able to create a new iTunes Connect account with access to sales reports only. I made that in order to be more secure about my Apple ID following a lock for unknown reasons last week. Meanwhile, the same day, I received an email from AppAnnie that basically says:

Some users' Apple ID accounts has been locked, we don't really know why but are looking into this with the help of Apple. By the say, it was a good idea to use a seperate iTunes Connect account for the sales reports download.

This is interesting. We don't really know what happen or if any data has been compromised... AppAnnie will be resuming the iTunes Connect data scrapping gradually in the next few days... stay tuned.

Reader Comments

There are no comments for this journal entry. To create a new comment, use the form below.

Post a New Comment

Enter your information below to add a new comment.

My response is on my own website »

Author:

Author Email (optional):

Author URL (optional):

Post:

↓ | ↑

Some HTML allowed: <a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <code> <em> <i> <strike> <strong>