phishing

Phishing scams Mac users should look out for

By

Macs may be pretty secure, but Mac users can still fall victim to lots of scams.
Macs may be pretty secure, but Mac users can still fall victim to lots of scams.
Photo: Pixels/Mikhail Nilov

Apple’s macOS is more secure than other operating systems like Windows. But an increasing number of phishing and malware attacks now target Mac users.

And, no matter how secure macOS is, it does not make Mac users immune from the danger of phishing. The success of such attacks often depends on the vigilance of the user.

Apple makes Safari’s Fraudulent Website Warning even more secure

By

Safari Fraudulent Website Warning is an optional feature.
Safari’s anti-phishing tool is about to get even more secure.
Photo: Ed Hardy/Cult of Mac

The Fraudulent Website Warning system built into Safari in the upcoming iOS 14.5 reportedly takes an additional step to protect your identity. Apple licenses the scam-prevention service from Google, and going forward will block that company from knowing users’ IP addresses through the use of a proxy server.

FTC warns about scammers calling people pretending to be Apple

By

Apple ditched plans for secure iCloud backups after FBI concern
Scammers could claim your iCloud account has been breached.
Photo: Jim Merithew/Cult of Mac

The Federal Trade Commission is warning people that scammers are posing as Apple customer support workers in an attempt to defraud them. The agency shared a couple of recorded messages (which you can listen to here) that sound quasi-legitimate but are, in fact, trying to steal personal information.

In one message, the caller says they have detected suspicious activity in the recipient’s iCloud account. They suggest that the account has been breached and, to secure it, the person should speak to an Apple customer service representative. They then give the option to connect to such a person on the phone.

Intego Mac Premium Bundle X9’s powerful solutions secure your Mac

By

Mac Premium Bundle X9 protects your computer from online threats with five apps.
Mac Premium Bundle X9 safeguards your precious computer.
Image: Intego

This Mac security post is presented by Intego.

Macs have a reputation for being less vulnerable than PCs to online threats like malware and viruses, but your machine is certainly not invulnerable. Far from it, actually. It can pay to invest in a suite of security apps like those in Intego Mac Premium Bundle X9 to protect your Mac from a variety of online threats.

Apple is the most imitated brand in global phishing attacks

By

Apple is the most imitated brand in global phishing attacks
You can tell he's a hacker because he's got computer code reflected in his sinister glasses.
Photo: Nahel Abdul Hadi/Unsplash CC

Apple has the dubious distinction of being the most imitated brand globally used in attempted phishing attacks, claims a new report.

Check Point Research’s latest Brand Phishing Report covers the first quarter of 2020. It shows that Apple was the top target for web-based phishing attacks and the second for mobile-based attacks for the first three months of the year.

Athletes’ and musicians’ Apple accounts hacked in phishing scheme

By

Fraudster steals $16k from victim posing as Apple tech support
Dear sir or madam, I am from Apple tech support. What is your password? Love, totally legit guy
Photo: Donald Tong/Pexels CC

Everyone needs to watch out for hackers phishing for their account details, and that includes celebrities. A Georgia man tricked pro athletes and rappers into giving up login details for their Apple accounts, which he used to access to their credit cards, according to the FBI.

Guilty iCloud hacker sent to slammer

By

Celebgate hack
Christopher Brannan gets a prison sentence for his part in the crime.
Illustration: Killian Bell/Cult of Mac

A judge sentenced a former high school teacher to 34 months in prison Friday after the man pleaded guilty to his role in the “Celebgate” hack of iCloud and other accounts.

Of those convicted for the high-profile hack, Christopher Brannan, 31, received the harshest sentence for breaching accounts. The attack led to the circulation of nude photos and videos of model Kate Upton, actress Jennifer Lawrence and others.

Watch for password phishing if your iPhone gets stolen

By

GrayKey can bypass iPhone security
The thief who has your stolen iPhone will use surprisingly sophisticated means to trick your passwords out of you.
Photo: Ed Hardy/Cult of Mac

If your iPhone is ever lost or stolen, be extra careful about scammers attempting trick your Apple ID password from you. iPhone thieves reportedly have an elaborate system set up to scam this information, as it’s needed to make a stolen device much more valuable.

Apple apologizes after Apple IDs stolen in China

By

Alipay
Apple IDs were used to steal money from accounts.
Photo: Alipay

Apple has issued an apology after a number of customers in China had their Apple ID stolen and used by thieves to take money from paired mobile payment services.

In a statement to the Wall Street Journal, Apple said that it is, “deeply apologetic about the inconvenience caused to our customers by these phishing scams.” It noted that this incident affected a “small number” of users.

Malicious ‘Apple Care’ phishing scam targets iCloud users

By

Hacker who tried to extort Apple for $100k is spared prison
Hacker who tried to extort Apple for $100k is spared prison
Photo: Jim Merithew/Cult of Mac

The latest phishing scam targets iCloud users, trying to scare them into installing malicious software on their iOS devices.

Some users have received emails recently that push them to fake Apple Support websites. Once there, the sites prompt them to call “Apple Care” because their devices are supposedly “locked for illegal activity.” Here’s how to avoid the scam.

Chrome adds Windows Defender to protect your Mac

By

Windows Defender Google Chrome
Windows Defender is now available inside Google Chrome.
Photo: Microsoft

Windows Defender, which protects Windows 10 PCs from malware, can now keep your Mac safe from inside Google Chrome.

Microsoft has turned its antivirus app into a Chrome extension that promises to detect phishing links in your emails and dodgy sites that distribute malicious software. It’s 99 percent effective, according to Microsoft, which makes Windows Defender better than rival browser protections.

Third man charged in ‘Celebgate’ iCloud hacking scheme

By

Celebgate hack
Phishing scam targeted dozens of celebrities, along with other users.
Image: Cult of Mac

A third man has plead guilty to hacking 550 iCloud and Google Gmail accounts, including those belonging to 40 celebrities — resulting in the leaking of sensitive photos and videos.

Chicago resident Emilio Herrera participated in the phishing scam between April 2013 and August 2014, which involved sending out alerts that appeared to have come from Apple, Yahoo, and Hotmail, requesting username and password information.

Why you shouldn’t trust Apple ID prompts in third-party apps

By

Not all Apple ID prompts are created equal.
Not all Apple ID prompts are created equal.
Photo: Jan Vašek/Pixabay CC

It’s not uncommon to see a random popup that asks you to “Sign In to iTunes Store” on iOS. They sometimes appear unexpectedly, but they’re usually genuine. However, one developer is warning users not to enter their password when the popup appears in third-party apps.

There is a chance that the app’s developer is phishing for your Apple ID password. Luckily, there’s an easy trick to distinguish legit popups from phishing attempts.

Beware phone scammers who warn of iCloud hack

By

Hacker who tried to extort Apple for $100k is spared prison
Hacker who tried to extort Apple for $100k is spared prison
Photo: Jim Merithew/Cult of Mac

Got a call from “Apple Support” to say your iCloud account was hacked? Hang up and ignore it.

Phone scammers are calling unsuspecting iPhone and iPad users and trying to trick them into handing over their iCloud account details. Once they have them, they can purchase whatever they want, and it’s you who foots the bill.

iPhone owners plagued by another iCloud phishing scam

By

icloud_fake
Watch out for messages like this!
Photo: Ste Smith/Cult of Mac

iPhone owners in the U.K. have complained about being targeted with a phishing scam trying to trick them into revealing personal information by claiming that there is a problem with their iCloud account.

The scam message appears to come from an official Apple account called “iSupport,” and says that specific iCloud accounts have been deactivated and that users should head to an external website to confirm their user details and “reactivate [their] account.”

Google cracks down on shady, fake download buttons

By

You'll probably see more of this screen until things get fixed.
You'll probably see more of this screen until things get fixed.
Photo: Google

If you use Google’s Chrome web browser, you’re now even safer from sneaky advertisers that try to get you to download their crummy software with fake download buttons.

Chances are you’ve seen these around, even on some large sites like Sourceforge and CNET, and might have clicked on one or two by accident, as intended.

Google’s new addition to its Safe Browsing initiative will block sites that have these deceptive download buttons on them.

Apple explains how to keep yourself safe from phishing hacks on the web

By

The trusty green lock you should be paying attention to while surfing.
The trusty green lock you should be paying attention to while surfing. Screenshot: Alex Heath/ Cult of Mac

Recent reports of iCloud phishing attempts in China illustrate just how important it is always verify that you’re logging into legitimate websites before you enter your precious passwords.

To help, Apple today outlined how users can protect themselves from phishing attacks, in which bad guys pose as legitimate entities in an attempt to gain sensitive data on the web. Apple’s simple PSA page shows how web surfers can verify the authenticity of any website.

Phishers Attack Overeager Devs Waiting For Dev Center To Come Back Online

By

screen-shot-2013-07-25-at-08-56-42-620x377

There’s always some scumbag who is willing to try to take advantage of a bad situation. Take Apple’s prolonged outage of the Apple Developer Center, for example. It’s a bad situation for everyone — Apple and developers alike — which is why, of course, someone’s now launched a phishing attack to try to trick people into thinking the Developer Center is back up.

Don’t Be Fooled By Phony Apple ID Login Pages Online

By

This is the real deal. Don't be a sucker.
This is the real deal. Don't be a sucker.

Hackers want your web logins, especially ones that have sensitive banking info, like your Apple ID. A fresh round of phishing attacks that ask for Apple IDs and passwords has surfaced.

“Phishers appear to have concentrated their fire on a relatively new target: Apple IDs,” according to Trend Micro. “In recent days, we’ve seen a spike in phishing sites that try to steal Apple IDs.”

Beware This Fake iCloud Email That Will Attempt To Sell You Flowers

By

Look at how ridiculous this email is.
Look at how ridiculous this email is.

Phishing emails are some of the most frustrating emails I have delivered to my inbox. While I’ve never fallen for one, the sheer audacity of the sender, who makes a lame and shameless attempt to steal my login and/or bank details (often using the name of a bank I’ve never dealt with in my life) really infuriates me.

There seems to be one going around at the moment that claims to be from Apple targeting iCloud customers. Unlike traditional spam emails, however, this one won’t attempt to steal your login details when you click on its link. Instead, it wants to sell you flowers.