With Apple products showing no sign of getting any less popular, scammers are turning to the Apple ID over credit cards as a new way to fleece the unwary, said a security researcher today.
The emails appear to be being spammed out widely, and not just to Apple Store users. The cybercriminals are taking a shotgun approach, hoping that a good proportion of recipients have Apple IDs and might be fooled into handing over their details.
Phishing is the term used to describe those emails you get that claim to be from your bank, or from eBay or Paypal. They tell you that there’s been some minor mix-up on your account, and ask you to log in to sort it out.
If you click the links provided in these phishing messages, you’ll end up at a website that looks like your bank, or Paypal, or Apple.com. But it isn’t. And once you’ve entered your username and password there, you’ve given a criminal access to your real account.
Phishing is big business, mainly because it works. If the scammers send out enough emails, they’re bound to pull in a few victims. And they don’t need many victims to make it pay.
As always, the best advice is to be very careful about unexpected incoming emails. Don’t click links inside them – if a message claims to be from Apple, open the App Store inside iTunes or on your iDevice, and check your account from there. If there are any genuine problems, you’ll soon know.