The majority of us have been using the internet for long enough now to understand not only how it works, but also the pitfalls and traps that one can fall into when using it on a daily basis. In one sense, we essentially have the world at our fingertips through the ability to access an almost unlimited amount of information and knowledge at the click of a button. With that said, there is also a darker, more malicious side to the internet that involves malware, purposely created computer viruses and a whole host of online scams that exist to manipulate individuals into parting with authentication information for various types of account.
We would like to think that internet users have started to wise up to the different scams that seem to appear on an almost daily basis, but the consistent time and effort put in by attackers seems to suggest that there are definite rewards to be had – especially for the more convincing scams. One of the latest phishing scams to land in the email inboxes of unsuspecting users focuses on Apple IDs by claiming that Apple have tried and failed to “validate” the account. The body of the email contains the following text:
We recently failed to validate your account information we hold on record for you, therefore we need to ask you to complete a brief validation process in order to verify your account. We take every step needed to automatically validate our users, unfortunately in this case we were unable to verify your details. The process will only take a couple of minutes and will allow us to maintain our high standards of account security.
This latest attempt at tricking users into following the embedded link and providing their username and password is by no means the most convincing that we’ve ever seen, but it’s definitely legitimate enough looking to fool a fairly decent percentage of those receiving it. Especially those who aren’t entirely tech savvy and don’t realise that Apple will never make contact this way. If you receive this particularly email, or any others that contain the same or similar content, then the advice is always clear: delete immediately and block the sender’s address.