Apple users hit with "Update using new SSL servers" phishing email
Posted on 21 January 2014.
Users with Apple Accounts are again being targeted with legitimate-looking phishing emails that are after their account credentials, personal and financial information.

"Your online access has been blocked," says the fake email equipped with the Apple logo and color scheme.

"As part of our ongoing commitment to provide the 'Best Possible' service and protection to all our customers, we are requiring each Customer to Update their account (s) using the new SSL servers to avoid suspension of you online access. Please Update your online account (s) by clicking bellow account update."

The offered link takes the victims to a fake Apple login page, where they are asked to enter their Apple ID and password. After "signing in", the are urged to enter their full name, address, phone number, birth data, mother's maiden name, name on payments card, card number, expiry date, and security number (click on the screenshot to enlarge it):



Once all this info is submitted, the victims are redirected to the legitimate Apple website.

Needless to say, the entered information ends up in the hands of cyber crooks, who will use it to perform identity theft, card fraud, and to hijack the victims' Apple Account in order to misuse it for spamming and other nefarious activities, warns Hoax-Slayer.









Spotlight

Bash Shellshock bug: More attacks, more patches

Posted on 29 September 2014.  |  As vendors scramble to issue patches for the GNU Bash Shellshock bug and companies rush to implement them, attackers around the world are probing systems for the hole it opens.


Weekly newsletter

Reading our newsletter every Monday will keep you up-to-date with security news.
  



Daily digest

Receive a daily digest of the latest security news.
  

DON'T
MISS

Tue, Sep 30th
    COPYRIGHT 1998-2014 BY HELP NET SECURITY.   // READ OUR PRIVACY POLICY // ABOUT US // ADVERTISE //