Your Account Has Been Locked, Please Update Your Account And Security Details.
Apple has already had its fair share of scam emails, circulating to current users attempting to steal your details by tricking you into updating your log in or credit card details. Say you recieve one of these emails..
At a first glance, you may get a small heart attack actually thinking that you account may have really been locked. But reading again you may notice a few details that aren’t quite right. Notably the spelling is off quite a bit and Apple’s email address seems to be email@example.com, not very smart for a professional business. By noticing these details you should get the idea that this is not a valid email from Apple. Finding the original creator is near impossible as they do not reply if you use the email addresses given, even if it does have a “support” address. Also, there are many websites available where you can make anonymous one time use emails, scammers love using these.
Because of the simplicity and nature of the email (besides the spelling mistakes), it can still fool people that are either too quick to panic or kids that have full or most access to their devices. The scary part is the amount of clone websites used to trick others into thinking their logging into their everyday accounts. Thankfully the only way to access these is through these scam emails. When asked to update your account details by clicking a link, it will redirect you to their clone log in site that may nearly replicate your log in page, in this case itunes. Whatever scripts were used to create the clone website may contain some extra features to copy or record your details to be used for later purposes. And by later purposes I mean change your details for themselves and clear out your credit card.
As I mentioned in my last Apple phishing post, my itunes account has been untouched for a few years now and I’ve also changed credit cards during that time, so receiving another itunes email a week later verified that it was definitely a phishing attempt. With how active these emails are it makes you wonder if anyone has sadly fallen for this scam.
A Week Later…
I figured straight away that this was another phishing attempt as I don’t speak spanish lol. Not much here except a receipt for an itunes purchase for Fortnite bucks for $5.99. I checked my bank statement for the date of purchase and found nothing out of the ordinary, so my credit card hasn’t been breached. Usually when receiving a legitimate itunes receipt via email, your Apple ID and payment details would be visible along with the application details and price. I can’t find the reason as to why they decided to use an attachment instead of just using the email space.
When I mentioned earlier about kids having most or full access to their devices, 90 percent of the time the parent/s have control over the credit card details and are usually saved to the device protected with a password for each purchase. That would most likely be the same for the email so you can keep track of purchases made with or without your permission. Most kids would ignore these messages and would rather just play the game. But if you are a constant buyer of these V-Bucks you may be worried to think that someone has actually hacked your account. Clicking on “cancel and manage orders” link would have most likely sent you to a clone website to enter specific details and or ask to update your payment details. Thankfully it has been shut down as trying the link for myself sent me to a GoDaddy domain. The website https://au.godaddy.com/ is a harmless and popular domain registrar and website builder for cheap affordable prices. With the amount of money Apple would receive selling apps and devices I don’t think they are in need of some low price domains.
Ignoring these emails is the right thing to do, but if you are unsure of your accounts vulnerability, make sure to use the account settings in your system settings or play store settings installed on the device. Check your credit card statements around the date of the supposed purchase. Most of these emails rely on the victim instantly worrying about their account and most people would think that if it has Apples logo it must be from Apple. Stop thinking this way as more skilled scam artists are getting more hard to tell from the real thing, they know that we trust company logos and that its copyright to copy and impersonate them. If you do receive these emails, the REAL Apple company is warning everyone about these suspicious emails, for more information visit, https://www.apple.com/ca/legal/more-resources/phishing/ Copy and paste this link to your web browser.
Also if your interested in wanting to learn more or educate your family on cyber security have a look at these great tools available on Amazon.
Learn more about your childrens vulnerability online and how you can protect them, your bank accounts and other online risks.
Keep records of favorite websites, log-in details, passwords and more in this stylish jounal.
Keep your PC safe with Malwarebytes, detecting and removing spam, protecting you from phishing attacks and keeping your passwords and credit card details safe online.
After purchasing Malwarebytes you will receive an email with the activation code within 24 hrs. Download size is 68mb.