Stolen Apple IDs have led to money being stolen from Alipay and WeChat Pay, China’s top mobile payment apps. The thefts took place from people who had their AliPay accounts linked to their Apple ID as a payment method …
The WSJ says that money was used to make fraudulent App Store purchases.
Both companies have confirmed the breach.
Thieves appear to have taken the maximum possible sum for a single transaction.
Alipay has advised those with linked Apple IDs to reduce their transaction limits as a mitigation measure.
Details are very sparse. It isn’t known how the Apple ID logins were stolen, nor how many users were affected, but WeChat Pay and Alipay each have around half a billion users. Alipay says that Apple is investigating how the IDs were stolen, but the company has so far made no specific comment.
China has an extremely well-established mobile wallet market, with most payments split between Alipay and WeChat.
Apple reportedly invested $13M in its initial rollout of Apple Pay to China, but the head-start enjoyed by local payment services have made it an uphill battle for the company. Apple has, however, persisted, running its biggest ever promotion in the country back in the summer. By offering discounts and rewards points, it matched tactics used by local companies to grow their user bases.
Apple had, however, had to acknowledge the dominance of the established local brands, even deciding earlier this year to accept Alipay in its own retail stores. That was the first time Apple has ever allowed retail store purchases to be made with a third-party mobile wallet app. The company already accepted Alipay for online purchases.
Photo: Shutterstock