There is something clearly wrong here...
... this is not likely a valid Apple email address:
Apple <kocobanjir@mail-trustsend.com>
I moused-over the "iforgot.apple.com" hyperlink, which actually goes to
https://se-curelink.com/apple.
This is clearly not in the apple domain.
Curious, I clicked on that and wound up at this authentic-looking web page at
https://www-applied.com-manage-security.com/Login.php
It's one of the more clever phishing attacks I've seen recently.
Looks pretty real, doesn't it? That's because it is a complete copy of the real Apple page:
In case you wonder, the real page https://iforgot.apple.com looks like this:
Now I'm going to report this as a phishing page at
https://safebrowsing.google.com/safebrowsing/report_phish/?hl=en
This exact attack has been around at other addresses, for example here.
No comments:
Post a Comment