Smishing scheme targeting Apple users
An SMS claims that users' Apple accounts will be locked to dupe victims into clicking into a phishing site that can capture their credentials.
A new phishing scam targeting Apple users has been detected that is using SMS messages to lure recipients, according to a McAfee Labs blog.
The message claims that the user's Apple account will be locked to dupe victims into clicking into a phishing site that can capture their credentials.
Researchers at Intel Security Mobile Research reported that the SMS message alleges to be an email, but the shortened URL points to a PHP file in a hacked website, which redirects victims to another hacked website that instructs victims to “safely” re-confirm the account information by clicking on an alleged Apple link. If they don't comply by July 28, the site threatens to shutter their account.
It is believed that around 1,700 people, primarily in the U.S., have clicked on the link, mostly on July 27."Do some research and save yourself a lot of grief," McAfee advised.