Phishing: How They Almost Got Me This Time

Cybercriminals are getting better…and a lot more sneaky.

Face it, I’m totally paranoid. I keep all my logins in a password manager. I use two-factor authentication wherever it’s available. And yet…

I totally almost fell for a phishing attempt a few days ago. At first, second and third views of this email, it seemed totally legit that it came from Apple support.

screenshot of phishing email

My first reaction was wracking my brain to remember when the last time I did any telephone support at Apple. The fact that I could not remember anything more recent than a year or so ago raised red flags.

So instead of taking the “survey,” I Googled and discovered that this was probably phishing. I forwarded the email to Apple’s reportphishing account.

Why this was such a good attempt:

  • Apple branding was on point
  • All the links at the bottom of the email seemed to be right

The sneaky thing that I should’ve checked right away: Hovering over the Survey Link showed that the URL went to c.apple.com. When I checked that domain name against WhoIs I found that it’s registered to a company called capple.com. So, yeah, not Apple.

Moral of the story: It might actually look real – no misspellings, no weird graphics. Be aware and be careful!

Categories: Hosting and Security | Tags: , | Bookmark the permalink.
Maria Lima

About Maria Lima

A longtime Matrix employee, Maria is the wiki queen. She's in charge of knowledge: a great task for someone who also writes fiction. Outside of Matrix, she's an award-nominated urban fantasy writer who spends a lot of time writing about things that go bump in the night.

Leave a Reply

Your email address will not be published. Required fields are marked *