Phishing email lures users into giving up Apple ID

Share this article:
Apple users who downloaded the free OS X Mavericks update are receiving a phishing email.
Apple users who downloaded the free OS X Mavericks update are receiving a phishing email.

Free is sometimes fishy. In the case of Apple's free OS X Mavericks update, it is also phishy.

Apple users who downloaded their free Mavericks update – the technology giant released the latest version of its OS X operating system, 10.9, for free earlier this week – are reporting they received a fairly authentic-looking follow-up phishing email.

Macworld posted about the circulating email in a Wednesday article.

What may immediately lure people in is that aesthetically the email has the feel of a classic Apple correspondence. Additionally, the subject line reads: ‘Your Apple ID has been frozen temporarily,' which may raise alarms for those recipients only passively glancing through their email.

However, there are telltale signs that will tip off most to this timeless hoax – the most immediate of which is the abundance of spelling and grammatical errors.

However, the most telling indicator that this is a malicious ruse is one that may be overlooked by some of the Apple community. The phishing letter says, “Dear Customer,” instead of using the user's name, as is standard with Apple. 

Although the email comes from “no-reply@apple.com,” at least one variant comes via “jet.websitedns.in,” an Indonesian domain. Furthermore, the ‘Verify Now' link contained within one of the emails, which asks users to click to “restart your information,” redirects to a Thai website that reportedly prompts people to input their Apple data. 

Anyone who falls victim to the scam will have given up his or her Apple ID credentials. It is unclear at this time whether the links contain any malware that is downloaded to the victim's system, which will compromise the user even further.

Community members are urging recipients to report the scams to reportphishing@apple.com.

Share this article:
You must be a registered member of SC Magazine to post a comment.

Sign up to our newsletters

More in News

TorrentLocker developers patch error

Victims had been able to restore encrypted files without paying a ransom.

Home Depot: breach risks 56M payment cards, 'unique' malware used

Home Depot confirmed that approximately 56 million payment cards may have been compromised as result of a malware attack.

Gartner: 75 percent of mobile apps will fail security tests through end of 2015

Gartner: 75 percent of mobile apps will fail ...

As BYOD and mobile computing become more critical to business, app downloads will raise security risks.