Monday, November 6, 2017

Phishing Email - RE : [ Summary New Reports ] Statement-News message Info-payment [Alert]

For the record, here's a recent Phishing Email from "Apple Inc." with Subject 
RE : [ Summary New Reports ] Statement-News message Info-payment [Alert]  that was received on Friday, Nov 3, 2017


What to do?

Well looks it like SPAM is being deal with more effectively. As of writing of this post Nov 06, 2017 the offending website has been taken down, in just 4 days

http://ow.ly/tKTm30glrvN
 did point to and very convincing Apple look alike site at 

https://www.review-info-payment1.com/upgrade.info

When I first checked on Friday, it was still up - see screen shot below. 

Here's the view of the email in Outlook.com 

The mail client with body of email reading; 
Please update your Apple ID Now



































Here's what http://ow.ly/tKTm30glrvN points to and very convincing Apple look alike site at 
https://www.review-info-payment1.com/upgrade.info



















How to tell this is a Phishing email ?

  1. Check email "Apple Inc" <Dear-Admin.History.Account-Transfer-appleid2018@Update-Sumary-Account098-costumer039.legendsok.u122pdateyouinforeminadersugmarrylijmitedaccesyouraccoutservicepaksupriadi4536367webapps.account.live.mail.com> it not from apple.com but live.com email.
  2. Bad spelling 
  3. Convert the email view from HTML to text, check for bad URLs.
  4. Hover over all links in email, if it's not from the same as the text then forget it.
  5. The best way is to look at message source, see below.


How to examine Email Message Source ?


Now lets look at message source
  1. Outlook.com->Actions->View Message Source. 
  2. Gmail.com->More (down arrow to top right)->Show original.
And look for phony links.


Report Phishing Email (not as Spam)


  1. Outlook.com->Junk (at Top)->Phishing Scam
  2. Gmail.com->More (down-arrow to top right)->Report Phishing 


Report phishing at Microsoft and government agencies


  1. https://www.microsoft.com/en-us/safety/online-privacy/phishing-symptoms.aspx

No comments:

Post a Comment