Kaspersky detected the interest of cybercriminals in Apple users and their accounts for the first nine months of 2020. Researchers from the company found almost 100 suspicious domains in Worldwide each month where "Apple" was mentioned as a company. Most of these websites require users to enter their Apple ID and password.
The number of these resources increased rapidly in September, reaching i 1.950 domains at the end of the month.
These are the main activities for capturing data from the most naïve Apple customers, according to Kaspersky:
- Locate lost phones
- Reset user accounts
- Sites that mimic Apple services to capture user data.
However, not all of these bogus resources work properly and are just loose pieces of untapped software. Scammers create multiple pages at the same time so that once they detect fraudulent use of one, they can switch to another with few interruptions.
If you don't want to be one of the victims of these kinds of tactics, remember:
- Be skeptical of any extremely generous news, offers or promotions.
- Check that the messages come from reliable sources (you can see the headers of the emails to make sure that the account that sent them is legitimate).
- Do not click on links in suspicious emails or messages from instant messaging applications and social networks that you do not know are genuine.
- Check the authenticity of the websites you visit (Safari displays a warning when there are problems with the site certificate).
- If you are still afraid of doing something you regret, install a security solution with databases updated with the latest phishing and spam resources.