phishing Stories August 14

PSA: Asking for your Apple ID for Apple Card invite is a glitch, not phishing

If you’ve received an email from Apple asking for your Apple ID in order to send you an invitation for the Apple Card, it’s not a phishing fraud…

phishing Stories August 11, 2017

Back in May, Google updated its Gmail app on Android to warn about phishing attempts. It is now rather belatedly bringing that same protection to the iOS app.

The protection kicks in if you click on a sketchy link in an email, with two different levels of warning …

expand full story

phishing Stories April 28, 2017

We learned recently that macOS malware grew by 744% last year, though most of it fell into the less-worrying category of adware. However, a newly-discovered piece of malware (via Reddit) falls into the ‘seriously nasty’ category – able to spy on all your Internet usage, including use of secure websites.

Security researchers at CheckPoint found something they’ve labelled OSX/Dok, which manages to go undetected by Gatekeeper and stops users doing anything on their Mac until they accept a fake OS X update …

expand full story

phishing Stories June 10, 2015

Update: Apple confirmed it’s aware of the issue and working on a fix:

“We are not aware of any customers affected by this proof of concept, but are working on a fix for an upcoming software update.”

If you are reading mail on your iPhone and iPad and a popup appears asking you to re-login to iCloud (or anything else), beware. Security researcher Jan Soucek discovered a bug in the iOS Mail app that allowed an attacker to run remote HTML code when an email is opened. That code could easily imitate an iCloud login prompt, fooling users into giving away their Apple ID credentials …  expand full story

phishing Stories December 9, 2014

Password managers are a great way to have strong, unique passwords for each website you access – but vital as it is these days, there’s no denying that it’s a chore to change them. Dashlane, a Mac and Windows password manager app, aims to take away the pain by doing it for you automatically across 50 top US websites like Apple, Amazon, Dropbox, Facebook, PayPal, WordPress and Twitter.

Importantly, the app can even cope with sites that employ two-factor authentication to login or change a password, prompting you for the code when required …  expand full story

phishing Stories October 22, 2014

Two days after evidence emerged of a phishing attack on iCloud, allegedly due to the Chinese government firewall redirecting traffic to a fake login page, the Chinese state news agency Xinhuanet is reporting a meeting in Beijing between Tim Cook and Chinese vice premier Ma Kai.

Chinese Vice Premier Ma Kai and Apple Inc. CEO Tim Cook on Wednesday exchanged views on protection of users’ information during their meeting in Zhongnanhai, the central authority’s seat. They also exchanged views on strengthening cooperation in information and communication fields.

The Chinese government censors access to the Internet by deploying a country-wide firewall which blocks certain sites and which can redirect traffic from sites the government dislikes to officially-sanctioned ones … expand full story

Powered by WordPress.com VIP