Cybercriminals are getting better…and a lot more sneaky.
Face it, I’m totally paranoid. I keep all my logins in a password manager. I use two-factor authentication wherever it’s available. And yet…
I totally almost fell for a phishing attempt a few days ago. At first, second and third views of this email, it seemed totally legit that it came from Apple support.
My first reaction was wracking my brain to remember when the last time I did any telephone support at Apple. The fact that I could not remember anything more recent than a year or so ago raised red flags.
So instead of taking the “survey,” I Googled and discovered that this was probably phishing. I forwarded the email to Apple’s reportphishing account.
Why this was such a good attempt:
- Apple branding was on point
- All the links at the bottom of the email seemed to be right
The sneaky thing that I should’ve checked right away: Hovering over the Survey Link showed that the URL went to c.apple.com. When I checked that domain name against WhoIs I found that it’s registered to a company called capple.com. So, yeah, not Apple.
Moral of the story: It might actually look real – no misspellings, no weird graphics. Be aware and be careful!