A whole lot of people got new iPads and Macs and iPhones and iPods this holiday season and now the bad guys are out there trying to take advantage of little baby Apple users. Sigh. This is why we can’t have nice things. CNET reports on a new and already very widespread phishing email that uses that most classic of scam tropes: we need to update your information. Beyond that derivative triteness, however, it’s pretty good:
The e-mail appears well-formatted with proper grammar, and is styled with shading and official-looking links, addresses, and copyright marks. The message also claims to come from an official looking e-mail address "firstname.lastname@example.org."
Beyond the e-mail looking authentic, the links provided in it are for a fake server that also appears to be authentic. If you click the Apple Store link, the server you go to will ask you for an Apple ID and password, and then display a page that requests you update your personal information including your credit card.
Obviously, don’t do it. The correct grammar is actually pretty impressive. A lot of these scams originate in Russia and while the art direction can be pretty slick (or not), the grammar is often the downfall. “Please updating you credit cards”, that kind of thing. Does this mean these scammers are within our borders? Could be.