Phishing mail from Apple, URL and SSL cert seems legit
I recently got an email from Apple (or so it seemded) with a purchase that I know I didn't make. The sender of the email should raise some concerns (helpcenterteam7286.noreplya4a4dc769@apple.supportidapple-systemrecoveryupdatea4a4dc769.7286.apple.com) but for the rest the email seemed totally legit.
When I clicked on the 'If you didn't make this payment please visit Itunes Payment Cancellation' link I was taken briefly to a URL http://www.5z8.info/_init_download_z8t0cu_gain-inches (blank page) that inmediately redirects to the URL https://appleid.apple.com/#!&page=signin. The weirdness starts here. The site looks totally legit, complete with a valid SSL certificate. It did ask me to enter ALL my personal details and credit card information.
I have no real reason to doubt the Apple page, I can find nothing to indicate that it's a fraud/scam. But the phishing mail was so elaborate, so well crafted that it fooled a nerdy CTO like myself. Why go through all that trouble?
0 comments
[ 3.8 ms ] story [ 12.2 ms ] threadNo comments yet.