Apple Store billing phishing – beware bogus emails!

ApplePhishing isn’t just about stealing your banking details, your PayPal password or even your Facebook login credentials.

These days it could be your Apple account that is being targeted too.

With more and more people having Apple IDs (used by millions for purchasing software from the Mac or iPhone App stores, or downloading music and movies from iTunes) it’s inevitable that criminals will show an interest in stealing your credentials.

On the surface, the following email might appear to come legitimately from Apple.

Phishing email

Dear Customer,

It has come to our attention that your account Billing Information records are out of date. That requires you to update your Billing Information. Failure to update your records will result in account termination.

Click on the reference link below and enter your login information on the following page to confirm your Billing Information records...

Click on [LINK] to confirm your Billing Information records.

Apple Customer Support

Take a closer look at the email, however, and if you hover your mouse over the link you will see that the email is attempting to take you to a German website, rather than the legitimate Apple Store.

A closer look at phishing email

In this particular case, the webpage you are taken to is now suspended – but future messages could easily take you to a fake Apple Store login page.

The emails appear to be being spammed out widely, and not just to Apple Store users. The cybercriminals are taking a shotgun approach, hoping that a good proportion of recipients have Apple IDs and might be fooled into handing over their details.

Always take care over unsolicited emails, and be cautious of the links you click on. Sophos products are blocking the above message as spam.