Apple Spoofed Phishing E-mails Attack Unwitting Internauts, Caution Experts
According to security experts, cyber-criminals are distributing phishing electronic mails purporting to be from Apple and containing web-links leading onto bogus Apple sites, reported onlinethreatalerts.com in news on January 19, 2014.
It maybe noted that situated inside Cupertino (California, USA), Apple is one major provider of software world over.
Addressing readers as "Dear," the fraudulent, phishing e-mail informs the user that following security measures, it was necessary to disable his Apple ID. The message explains that somebody attempted at accessing the user's Apple account via entering his login credentials but the IP address from where the intruder connected was different. It's therefore directed that the user substantiate his identity failing which his A/C will be deactivated owing to Apple's concerns about maintaining the security as well as integrity of all people using Apple's products. For substantiating, user is recommended to click on "Verify Now," the message ends before signing off with "Regards" on behalf of Apple.
However, clicking the web-link takes onto a malicious destination whose TLD (top-level domain) URL suffix is from Tokelau of South Pacific, analysts of the phishing scam remark.
Tokelau has fine scenic beauty; however, it is not really well-recognized as having a centre for Apple's operations. Moreover, the TLD of Tokelau viz., '.tk' had association with over 20% of all the e-mail phishing campaigns during 2010.
Meanwhile, it isn't new to have social engineering tactics and fake websites for phishing assaults executed to get Apple users' credentials. Indeed, phishers routinely target Apple just as several other well-known Internet-based companies. But, in spite of the numerous existing online resources like news stories and blogs informing Web-surfers of the kind of malevolent sites, innumerable people keep on getting victimized with the mentioned types of phishing assaults, the analysts state in addition.
Therefore, anyone getting the above e-mail else any of likewise kind should keep in mind that Apple won't ever ask for account verification else password change via the provision of Apple ID/existing password. Wishing to know anything about one's Apple account, the person should directly visit Apple's website, a sure and secured place, advise the security analysts.
» SPAMfighter News - 31-01-2014