Apple users hit with "Update using new SSL servers" phishing email
Posted on 21 January 2014.
Users with Apple Accounts are again being targeted with legitimate-looking phishing emails that are after their account credentials, personal and financial information.

"Your online access has been blocked," says the fake email equipped with the Apple logo and color scheme.

"As part of our ongoing commitment to provide the 'Best Possible' service and protection to all our customers, we are requiring each Customer to Update their account (s) using the new SSL servers to avoid suspension of you online access. Please Update your online account (s) by clicking bellow account update."

The offered link takes the victims to a fake Apple login page, where they are asked to enter their Apple ID and password. After "signing in", the are urged to enter their full name, address, phone number, birth data, mother's maiden name, name on payments card, card number, expiry date, and security number (click on the screenshot to enlarge it):

Once all this info is submitted, the victims are redirected to the legitimate Apple website.

Needless to say, the entered information ends up in the hands of cyber crooks, who will use it to perform identity theft, card fraud, and to hijack the victims' Apple Account in order to misuse it for spamming and other nefarious activities, warns Hoax-Slayer.


Pen-testing drone searches for unsecured devices

You're sitting in an office, and you send a print job to the main office printer. You see or hear a drone flying outside your window. Next thing you know, the printer buzzes to life and, after spitting out your print job, it continues to work and presents you with more filled pages than you expected.

Weekly newsletter

Reading our newsletter every Monday will keep you up-to-date with security news.

Daily digest

Receive a daily digest of the latest security news.

Fri, Oct 9th