Beware spearphishing mail 'Apple-ID login suspended'
I just received a highly authentic-looking mail supposedly from Apple to say that my Apple ID had been suspended due to an unusual number of failed log-in attempts. I’m supposed to log in and change my password. It's perfectly formatted.
Phony junk mails like these are commonplace but unlike most spam mails this one contained both my ‘work’ Email address and my name, so it’s likely a spearphishing attack caused by someone else’s PC and address book being hacked, or a database has maybe been stolen from somewhere.
However the click-thru 'verify' link goes to apple-verification2.co.uk (it’s rare for a .co.uk domain to be used this way) and a quick check on Nominet reveals the domain is registered in the USA - but not to Apple!
http://www.nominet.uk/whois/?query=apple-verification2.co.uk#whois-results
Anyway, it almost had me fooled. Crooks are getting ever more sophisticated as they continue to hone their techniques, and clicking on a phony page like this could infect your PC with a serious virus that could steal your ID, bank logins or even damage your hard disk. It just goes to show how vigilant you have to be.