Apple Developer Center Outage Sparks New Round of Phishing Attacks

Discussion in 'Mac Blog Discussion' started by MacRumors, Jul 25, 2013.

  1. macrumors bot

    MacRumors

    Joined:
    Apr 12, 2001
    #1
    [​IMG]


    As noted by ZDNet, scammers have launched a new round of phishing emails on the heels of an outage of Apple's Developer Center late last week. The email offers the recipient access back into their accounts if they click on a link posing as an official Apple page. However, the page is actually located on another site and proceeds to take the account credentials of the user if they log in on the page.

    Phishing attacks targeting Apple customers are regular occurrences given the size of the company's user base. But with many casual users perhaps only vaguely aware of Apple having had a recent problem with some of its online services, they may now be more likely to fall victim to such an attack.

    [​IMG]
    Earlier this week, independent security researcher Ibrahim Balic speculated that he may be responsible for the breach that caused the extended outage of Apple's Developer Center, which for the most part remains offline one week after it was taken down by Apple. Yesterday, Apple outlined a plan for bringing its Developer Center back online, and also created a status page to display the availability of its services.

    Article Link: Apple Developer Center Outage Sparks New Round of Phishing Attacks
     
  2. macrumors 6502a

    hellomoto4

    Joined:
    Jul 11, 2008
    Location:
    Australia
    #2
    Look at that grammar! Although it may look quite real, it reads like an 8 year old has written it.
     
  3. macrumors member

    rodpascoe

    Joined:
    Jun 19, 2006
    Location:
    Newquay, Cornwall
    #3
    I was going to post the same thing and then saw your post hellomoto4.

    It reads terribly and you have to wonder at the literacy of the people who fall foul of these phishing attacks really.

    :(
     
  4. macrumors G5

    Rogifan

    Joined:
    Nov 14, 2011
    #4
    Um, that doesn't look legit at all. Can't believe someone would mistake that for an official Apple email. :eek:
     
  5. macrumors regular

    Joined:
    Jun 12, 2012
    Location:
    Boulder,CO
  6. macrumors 6502a

    Joined:
    Jun 14, 2012
    Location:
    Columbia, MD
    #6
    Can't imagine how many people would fall for it if it was perfectly written and the landing page professionally done. But in all that looks like crap.
     
  7. macrumors 6502a

    Joined:
    Feb 18, 2010
    Location:
    Terra Australis
    #7
    If anyone actually falls for this, they should not be a Developer. The grammar in this email is shocking. Apple don't address with "Dear Apple Customer" / Apple Don't use "to get back into your account" / Apple never use "update now" links, as Apple always shows the full link in emails / "Confirmed" should not be capitalised / Apple don't use the term "right away" / Apple don't use the term "fraudsters" (ironically the fraudsters are the one's sending these out) / And "yours sincerely, apple" - no capital A an no carriage return after "sincerely".

    Oh and the the way, where's the Apple Logo?
     
  8. macrumors member

    Scyanide

    Joined:
    Apr 9, 2013
    Location:
    Melbourne, FL
  9. macrumors 68020

    Joined:
    Jan 22, 2009
    #9
    ...or someone for whom English is not a native language.
     
  10. macrumors 603

    whooleytoo

    Joined:
    Aug 2, 2002
    Location:
    Cork, Ireland.
    #10
    I've heard a theory (which might be plausible) that the spelling or grammar errors are deliberate, in order to weed out the careful/sceptical users right at the start.

    Anyone who doesn't notice the spelling/grammar/layout errors right at the start is more likely to give our their passwords/credit card details later.

    Maybe that's giving them too much credit. :)
     
  11. macrumors member

    Joined:
    Sep 18, 2012
    Location:
    CT
    #11
    Looks legit to me. Shut up and take my credit card/bank info/SSN/money!
     
  12. macrumors 6502a

    Joined:
    Apr 2, 2013
  13. macrumors 6502a

    szw-mapple fan

    Joined:
    Jul 28, 2012
    #13
    At least make it look genuine if you're scamming somebody... Well, this might work on non-English speaking developers??
     
  14. macrumors 6502

    Joined:
    Apr 21, 2004
    #14
    It always amazes me how scammers can be so smart when it comes to creating fake websites, collecting data, and getting in through back doors, but are so incredibly stupid at putting together a simple sentence.
     
  15. macrumors G3

    charlituna

    Joined:
    Jun 11, 2008
    Location:
    Los Angeles, CA
    #15
    Yep. Then there is the target audience. Developers are generally too smart to fall for this kind of game.

    There are folks that wonder if this researcher isn't a tad full of it and if at least some of the phish is just part of his 'attack' scheme. Couldn't brute in so let's try some social tricking. And the whole 'just research' is to build a defense.
     
  16. macrumors demi-god

    firedept

    Joined:
    Jul 8, 2011
    Location:
    Somewhere!
    #16
    Why don't I just hand you all my passwords! Come on, at least make it look official. My teenage son tutors 6-7 year old kids and they could probably do better with the grammar. Scumbags (and I use the term very lightly) will take advantage of anything, won't they.
     
  17. macrumors member

    Joined:
    Jun 25, 2012
    #17
    Yeah, because developers aren't savvy to this at all. :rolleyes: Grandpa, maybe. Not developers.
     
  18. macrumors regular

    Joined:
    Oct 12, 2011
    #18
    Hmmm, have you seen any of the apps on the store?!?
     
  19. macrumors 65816

    bacaramac

    Joined:
    Dec 29, 2007
    #19
    If a dev falls for this, they deserve to get scammed. I have also heard the poor grammer, etc is to weed out people who wouldn't fall for scam. If you continue to page and input your credentials, you will probably continue giving info like credit card, ssn, etc.
     
  20. macrumors member

    Joined:
    Oct 28, 2012
    Location:
    The Shire
    #20
    Wow, I could sneeze a better email. The amount of gramatical errors is incredible
     
  21. macrumors 6502a

    Joined:
    Aug 3, 2010
  22. macrumors 68000

    Joined:
    Jul 3, 2005
    Location:
    UK/US
    #22
    ... and the naivety of those who assume everyone else speaks English as a first language. :p
     
  23. macrumors regular

    Joined:
    Mar 21, 2013
    #23
    Could you do it in Russian?
    Hypothetical, not assuming the scammer is Russian
     
  24. macrumors 6502a

    Yptcn

    Joined:
    Aug 24, 2012
    Location:
    Paris
    #24
    FYI , these emails come in other languages ! I'm french and got it a few times in french ;)

    …and the grammar is bad also !
     
  25. macrumors newbie

    Joined:
    Feb 1, 2012
    #25
    The ones that can put together simple sentences just never get caught…
     

Share This Page