New Email Scam Tries to Steal iPhone Users’ Login Details, Photos
TEHRAN (Tasnim) – Scammers are trying a new way of deceiving people in a bid to steal Apple login information.
The phishing email appears to be from Spotify and says the user has purchased a year's Premium subscription for $150.99 (£115), according to a Daily Mail report.
A hyperlink in the email is labelled as 'review your subscription' and takes the user through to an official-looking site branded with Apple logos.
This phoney site is designed to dupe people into submitting their Apple login and password which goes straight through to the hackers.
This information may give them unrestricted access to Apple Pay, pictures, videos and personal information.
The iPhone scam was highlighted on Reddit and the discoverer said: 'I saw this email today, I thought the sender looked fishy, so I went in to see if I had bought a year of Spotify Premium.
'I was drinking last night so I had a slight panic and clicked the link.
'But when I saw the Apple page with a random address I immediately knew it was a scam.'
Tim Sadler, CEO of security firm Tessian, told The Sun: 'This is an example of a classic phishing scam.
'Phishing emails, like spam, are bulk in nature, but are often farming for a user's credentials by mimicking the identity of a trusted website or service – in this case, Apple and Spotify.
'Like spam, phishing doesn't discriminate. Anyone, individual or business, can be targeted and easily duped.'
The email and subsequent website are both well-designed and look official, but there are some key points that reveal the setup as a sham.
Careful observation of the messages and site is crucial in spotting any fraudulent emails and can help avoid the common pitfalls.
Confusion between the Apple and Spotify brands, for example, is an indicator the email is a hoax and no HTTPS are also giveaways.
If users do fall for the trick and hand over their details to the schemers they could give them complete control of their account.
In here is personal information, access to the iCloud, photos, videos and even the possibility of fraudulent purchases.