Never miss an update Follow AppleInsider
Tuesday, December 27, 2011, 10:49 pm
New scam digs for billing information from Apple customers
Security firms have issued warnings regarding a new "well-crafted" phishing scam that attempts to fool customers into providing their AppleID billing information.Intego posted an alert on the scam earlier this week, noting that the first emails appeared to have gone out on or around Christmas day. The phishing email purports to come from "appleid@id.apple.com" and informs recipients that their billing information records are "out of date."
Customers are directed to click on a link to http://store.apple.com, but they are instead redirected to a "realistic-looking sign-in page," according to the security firm's report.
Though phishing scams targeting Apple customers are by no means new, this particular scam has attracted attention because it is unusually detailed in its efforts to deceive. The email makes use of the Apple logo and shading and employs better formatting than similar frauds in the past.
As a precautionary measure, users should remember not to click directly on links from email messages and instead navigate to the website in question on their own.
In August, scammers set out to trick Apple's MobileMe subscribers into upgrading to the then-forthcoming iCloud service. Around the Thanksgiving holiday, another scam cropped up falsely advertising an iTunes gift certificate that was actually malware meant to pilfer passwords and other personal information.
Mac users were also the target of an elaborate hoax involving fake anti-virus software, usually dubbed MacDefender, earlier this year. The application would automatically download itself onto users' computers in an attempt to obtain their credit card information. Russian police later found evidence tying the scam to online payment service Chronopay.
On Topic: iTunes
- Penguin agrees to $75M settlement in Apple iBooks price fixing lawsuit
- Editorial: Apple's billions are building an empire for the future
- Gameloft's Gangstar Rio, N.O.V.A. 3 go free on iOS for a limited time
- Apple releases iTunes 11.0.3 with new MiniPlayer, improved Songs View
- Google's All Access music streaming service to take on Spotify, Pandora
Previous Comments View All
Anyone with a half a brain, if they read the words, would pick up on the poorly worded grammar and mid-sentence capitalization. Most people should know that you don't need billing information to have an account, either.
These scammers are like lions in the Serengeti. It's old and feeble they gazelles they are after.
Personally I don't even click on email links from businesses when I'm certain they are legit. I always access from a bookmark in my browser just to be sure and make sure I maintain that habit.
Looks like the scammers are being more careful about spelling and grammar, though there's still a few mistakes.
Some of the phish emails I've received have such horrible writing that you wonder if it was written using Google Translate from Chinese. I bet the scammers would do a lot better if they hired native English speakers to write their E-mails.
And how come there's so few native-English speaking scammers anyway? The US, Canada, UK, Australia, etc. have their fair share of criminals after all!
The US, Canada, UK, Australia, etc. have their fair share of criminals after all!
We have more than our fair share, thank you, but they all run banks.
My first thought: "Pffst... who would be dumb enough to fall for this?"
Second thought: "Crap! My elderly parents and their parents have Apple accounts, and they believe Nigeria has a couple thousand deposed princes. Doh!"
EDIT: Is it a coincidence that my post was preceded by a spammer who is advertising cheap wedding dresses?
EDIT 2: Cool, they 86'd it.
These scammers are like lions in the Serengeti. It's old and feeble they gazelles they are after.
Personally I don't even click on email links from businesses when I'm certain they are legit. I always access from a bookmark in my browser just to be sure and make sure I maintain that habit.
Good point, good simile and good habit. I do the same, also.
Anyone with a half a brain, if they read the words, would pick up on the poorly worded grammar and mid-sentence capitalization. Most people should know that you don't need billing information to have an account, either.
Actually you do. Sort of. It depends on what account you are referring to.
If it's for iCloud then no. But if you want to download even just the free stuff with no credit card etc on file you still have to give your billing address.
But both can use the same Apple ID, thus you might get this email.
Fortunately most folks will not fall for this scheme either because they realize that it could be fake or because they will be pissed at Apple for threatening to cancel their account "after you told me to sign up for that iCloud business when I got my iPhone last month and know you are just going to cancel my account and delete my contacts and the rest of it because I didn't give you a credit card" and find out that Apple didn't send that email.
Online scammers, virus writers, spammers, etc. should be subject to the death penalty. A few visible instances of these vermin suffering the harshest possible punishment would make the rest of them think a little harder before doing the same.
use of "..." is not something apple would do, not formal enough.
"Billing Information" in the middle of a sentence? wrong.
"Thanks," = no thanks
"Dear customer," If I remember correctly, if its an email, they usually include your first name?
While you all are making good points about the weaknesses in the email, they would have to be a great deal worse before they really mattered. If a person doesn't know what a phishing attack is then the occasional grammar mistake isn't going to be all that alarming, IMO.
Latest Apple Headlines
-
Apple invention adjusts audio based on a display's orientation, user positioning
~1 hour ago -
Apple investigating advanced AirPlay system with device-specific UIs
~2 hours ago -
Twitter unveils two-factor authentication, updates Mac app with Notification Center support
~5 hours ago -
OtterBox buys rival case maker LifeProof, drops ongoing patent suit
~9 hours ago -
New Microsoft Windows 8 ad turns Apple's Siri against her maker
~11 hours ago - more...
Want to write for AppleInsider? Submit your application now!
Lowest Prices Anywhere!
| Model | Price | You Save |
|---|---|---|
| Core i5 MacBook Pros w/ Retina | ||
| 13" 2.5GHz/8GB/128GB | $1,406.48 | $292.52 |
| 13" 2.5GHz/8GB/256GB | $1,479.99 | $519.01 |
| 13" 2.5GHz/8GB/512GB | $1,699.99 | $799.01 |
| Core i7 MacBook Pros w/ Retina | ||
| 13" 2.9GHz/8GB/256GB | $1,599.99 | $599.01 |
| 13" 2.9GHz/8GB/512GB | $1,799.99 | $899.01 |
| 15" 2.3GHz/8GB/256GB | $1,899.99 | $299.01 |
| 15" 2.6GHz/8GB/512GB | $2,299.99 | $568.01 |
| 15" 2.7GHz/16GB/768GB | $2,699.99 | $499.01 |
| Model | White | Black | |
|---|---|---|---|
| iPad mini (WiFi only) | |||
| 16GB WiFi |  |
$329.99 | $329.99 |
| 32GB WiFi | |
$429.99 | $429.99 |
| 64GB WiFi | |
$529.99 | $529.99 |
| iPad mini (WiFi + 4G) | |||
 |
 |
 |
|
| 16GB 4G White | $459.99 | $459.99 | $459.99 |
| 32GB 4G White | $559.99 | $559.99 | $559.99 |
| 64GB 4G White | $659.99 | $659.99 | $659.99 |
| 16GB 4G Black | $459.99 | $459.99 | $459.99 |
| 32GB 4G Black | $559.99 | $559.99 | $559.99 |
| 64GB 4G Black | $659.99 | $659.99 | $659.99 |
Anyone with a half a brain, if they read the words, would pick up on the poorly worded grammar and mid-sentence capitalization. Most people should know that you don't need billing information to have an account, either.