Apple IDs targeted in phishing scam through hacked Electronic Arts servers

On the page, users are asked to sign in with their Apple ID and accompanying password, though the page itself is hosted on ea.com. After a person enters their information, a second page asking for full name, credit card number, expiration date, verification code, date of birth, phone number, mother's maiden name, and other information.

Once a user has been tricked into submitting their details, they are redirected to the actual Apple ID website, in an attempt to play the left off as legitimate.

Apple ID login credentials are a common target for hackers, as the information is used to access a variety of content offered by Apple from the App Store and iTunes.

As of last year, it was estimated that Apple has an account base of more than 500 million users with active credit cards tied to their Apple ID. That makes Apple's user base one of the largest and fastest growing groups among technology companies, second only to Facebook.

Presenting login forms under the "trusted" name of a brand such as Apple is another common practice in online phishing attempts. Users should always check that the URL of the current page they are visiting is associated with the service they believe they are logging into, and modern browsers such as Apples' Safari will also offer visual indications that the current website is legitimate, certified and secure.

Share :

Tweet

✚

Related Post