Malware, Phishing, Threat Management

Phishing emails claim virus in iTunes database

Scammers are looking to steal payment information from Apple customers using phishing emails claiming that a virus was detected in the iTunes database.

The emails are full of typos and state that users need to re-validate their account details by clicking an attached link to a third-party site posing as the login page for iTunes Connect, according to a June 20 ESET We Live Security blog post.

A user who enters login credentials is then transferred to a bogus “Update Billing” page, which ultimately leads to a request to enter payment card information and other personal details, the blog said.

The scam came at a time when major online services, including Reddit and Netflix, are requiring users to reset passwords in light of recent high profile breaches that have compromised the credentials of more than 640 million accounts.

Get daily email updates

SC Media's daily must-read of the most current and pressing daily news

By clicking the Subscribe button below, you agree to SC Media Terms and Conditions and Privacy Policy.