New Phishing Scam Targets Mac Users

Apple news website '9to5Mac.com' is cautioning Mac users that a newly launched e-mail attack is distributing a phishing message, which claims an association with a retail transaction user has recently made with Apple.

The person, who hinted the attack to 9to5Mac.com, states the attack aims at Macs through an e-mail that spoofs bankreport.com, while posing as a communication from Apple.

There is an attachment in the message that carries a file with an .exe extension that can, however, open exclusively on Windows systems. While enquiring about details related to any order placed recently with Apple, the e-mail states that a request from Apple Inc. with respect to a payment was received to facilitate debiting of $7,548.45 on the user's financial account, but if the user wants to terminate the transaction, he must open a given attachment.

Clicking on the attachment doesn't cause any harm as such since Windows .exe files do not open on Macs except if there were a virtualization software such as Parallels Desktop and a Windows OS.

However, this may prompt one to ask as to why miscreants aim at attacking Windows users by mentioning an Apple transaction. The answer is obvious -they want Windows users to download and run the software, and are trying to make profit from the purchase of Apple products by those users.

It is evident from the latest online fraud that scammers are seriously exploiting the Apple momentum that could shortly mean additional keystroke loggers and trojans to contaminate users of OS X.

While Macs appear to be safe from malware assaults that depend on identification of systems, they can be hacked through phishing, keystroke logging etc., a majority of which depend on the way Macs are used, while the malicious attackers could exploit the activities that unaware users engage in.

Phishing attacks against any OS are generally effective as they involve deceiving the user rather than exploiting software flaws or any malicious software.

However, to stay protected, users are suggested to remain cautious while online, and not follow suspicious or unfamiliar links/attachments.

Related article: New Zealand Releases Code To Reduce Spam

» SPAMfighter News - 11/27/2009