Warning: Apple IDs targeted in global phishing scam

“A new phishing threat is targeting businesses and consumers with Apple IDs in an effort to steal IDs, passwords and credit card information,” Ian Barker reports for BetaNews.

“The attack has been identified by Comodo Antispam Labs and looks like an official Apple email,” Barker reports. “The messages claims that limitations have been placed on the user’s account and that they need to provide additional verification information by clicking a link.”

“If the link is clicked it leads to pages with a similarly authentic Apple look and feel that ask for passwords and billing information including payment card details,” Barker reports.

Read more in the full article here.

MacDailyNews Take: Lets be careful out there. Always manage your Apple ID by going directly to: https://appleid.apple.com


    1. If the vast majority of Apple users don’t know about 2 step authentication, then the phishing attempts will still work. Even when people know that there should be two steps, many will fall for the scam.

      1. I know your pain. Same here. And I research and write about Mac security! *sigh* ‘Two-Factor Authentication’ takes some getting used to. PLUS Apple made it very clunky to use. I’ve constantly had problems with it, spent at least a couple hours chatting with Apple about it. They know.

    2. The only way it could is if they were literally signing you in at the exact time you were trying to do it. Like you sign into their cheap knockoff Samsung-praising website, they see it and attempt a login on Apple’s, it generates the code and you enter it, then they take that and immediately enter it on their end. It would all have to be completely live, fairly sophisticated, and would demand the utmost focus and dedication of the hacker. Unless they automated that whole thing, but even then it would just need to be that much more sophisticated.

  1. Sure it would but this is targeted at people not so savvy and not so thoughtful on security matters, and there are many of them out there. Furthermore, whos to say they havent rigged a phony 2step authentication system?

  2. I’ve received several emails from someone pretending to be Apple. The email says that a purchase has been made on my Apple ID and if it wasn’t me, then I should go to to apply for a refund. If I click on the link, the URL is something not related to Apple at all. The link asks for Apple ID and password. No, I’m not dumb enough to give that information out to any site where I did not initiate contact.

  3. That’s nothing!
    There’s a new Windows 10 scam that encrypt your files (for real) and tell you you need to pay a ransom to get your files back!

    Of corse the people that I first heard report this made no mention that this was a Windows only scam and that Macintosh users were not effected. They even suggested Apple’s Time Machine as a way to protect yourself from this type of scam. 😐

    1. I’ve been getting some for a while now; they look amateurish and the address it’s sent from reads as my email.

      Mail does a good job of throwing them into my Junk folder so I can check and delete.

  4. I get a fraudulent ‘Apple’ phishing message about once a week. I always report them to SpamCop.org and direction to Apple:


    What Apple needs is the phishing email forwarded to them using the email address above, PLUS the full code from the email, including headers. Both of these strategies help seek and destroy the phishing rats.

  5. A few things i have observed in terms of computer system memory is always that there are specifications such as SDRAM, DDR etc, that must go with the specifications of the mother board. If the computer’s motherboard is pretty current while there are no operating-system issues, improving the memory literally normally takes under an hour or so. It’s one of the easiest computer system upgrade treatments one can visualize. Thanks for revealing your ideas.

Reader Feedback

This site uses Akismet to reduce spam. Learn how your comment data is processed.