http://www.macnn.com/articles/12/04/12/cracks.down.on.account.hijacking/
Apple begins requiring extra security for Apple IDs
updated 04:50 pm EDT, Thu April 12, 2012
Cracks down on account hijacking
Within the last 24 hours or so, Apple has started to require extra security for Apple IDs, notes The Next Web. People downloading new apps in iOS or in iTunes are reportedly being asked to pick three security questions, as well as enter a backup email address. After the process is complete, an email is sent to verify the backup address.
A number of people have posted to Apple's support forums wondering if pop-ups seen in iOS were actually phishing scams. Apple appears, however, to be taking steps against the long-standing problem of iTunes Store account hijacking. Hackers, often Chinese, will crack accounts to resell them and/or download paid apps for free.
Forum Regular
Joined: Aug 2001
so...
This means it's true, apple's "security" in the iTMS wasn't up to snuff?
And yet you never hear people complain. In fact, they ignore it, and say Apple never had an issue! It's not Apple's fault. It's the user for picking a password that's easy to guess (how, I don't know, since how many guesses would one need, shouldn't the account be locked out by then?).
And the whole security question thing is stupid, because with social media and all that c***, it's actually easier to hack an account now.
If Apple really wanted to do something impressive, they could let you pick a user name rather than tying your account to your email address, which means you're halfway to hacking the account.