Wednesday, June 21, 2017

Phishing Email Apple Two-Factor Authentication Enabled, Service

For the record, here's a recent Phishing Email from "Apple" with Subject RE : [ Summary New Reports ] Statement-News message Info-payment [Alert] that made it into my Outlook inbox. 

What to do?

Normally, report them and label them as Phishing Email not SPAM (in your online email system), see below. But it looks like the forwared website has been taken down as of today  


Here's the email as seen in Outlook.com online







The links point to http://ow.ly/tKTm30glrvN  points to and very convincing Apple look alike site to get your info.

This is not active any longer -> https://www.review-info-payment1.com/upgrade.info























How to tell this is a Phishing email ?

  1. Check email "Apple Inc" <Dear-Admin.History.Account-Transfer-appleid2018@Update-Sumary-Account098-costumer039.legendsok.u122pdateyouinforeminadersugmarrylijmitedaccesyouraccoutservicepaksupriadi4536367webapps.account.live.mail.com> it not from apple but a live.com email.
  2. Convert the email view from HTML to text, check for bad URLs.
  3. Hover over all links in email, if it's not from the same as the text then forget it.
  4. The best way is to look at message source, see below.


How to examine Email Message Source ?


Now lets look at message source
  1. Outlook.com->Actions->View Message Source. 
  2. Gmail.com->More (down arrow to top right)->Show original.
And look for phony links.


Report Phishing Email (not as Spam)


  1. Outlook.com->Junk (at Top)->Phishing Scam
  2. Gmail.com->More (down-arrow to top right)->Report Phishing 


Report phishing at Microsoft and government agencies


  1. https://www.microsoft.com/en-us/safety/online-privacy/phishing-symptoms.aspx

No comments:

Post a Comment