Apple users hit with "Update using new SSL servers" phishing email
Posted on 21 January 2014.
Users with Apple Accounts are again being targeted with legitimate-looking phishing emails that are after their account credentials, personal and financial information.

"Your online access has been blocked," says the fake email equipped with the Apple logo and color scheme.

"As part of our ongoing commitment to provide the 'Best Possible' service and protection to all our customers, we are requiring each Customer to Update their account (s) using the new SSL servers to avoid suspension of you online access. Please Update your online account (s) by clicking bellow account update."

The offered link takes the victims to a fake Apple login page, where they are asked to enter their Apple ID and password. After "signing in", the are urged to enter their full name, address, phone number, birth data, mother's maiden name, name on payments card, card number, expiry date, and security number (click on the screenshot to enlarge it):



Once all this info is submitted, the victims are redirected to the legitimate Apple website.

Needless to say, the entered information ends up in the hands of cyber crooks, who will use it to perform identity theft, card fraud, and to hijack the victims' Apple Account in order to misuse it for spamming and other nefarious activities, warns Hoax-Slayer.









Spotlight

Whitepaper: Zero Trust approach to network security

Posted on 20 November 2014.  |  Zero Trust is an alternative security model that addresses the shortcomings of failing perimeter-centric strategies by removing the assumption of trust.


Weekly newsletter

Reading our newsletter every Monday will keep you up-to-date with security news.
  



Daily digest

Receive a daily digest of the latest security news.
  

DON'T
MISS

Fri, Nov 21st
    COPYRIGHT 1998-2014 BY HELP NET SECURITY.   // READ OUR PRIVACY POLICY // ABOUT US // ADVERTISE //