A cybersecurity firm has uncovered several phishing campaigns targeting Apple users’ credentials – Apple IDs and passwords – since the beginning of 2016.
Cyber criminals are devising faux Apple domains purporting to be legitimate websites to engage in phishing attacks targeting Apple iCloud users in China and the UK, revealed cybersecurity firm FireEye Labs.
In particular, the phishing campaigns are geared to ascertain the Apple IDs and passwords of Apple users.
Provided by Apple, an Apple ID is a centralized personal account that provides customers access to several Apple platforms and services including the App Store, iTunes Store, and iCloud. An Apple ID can be used to access the same features across several Apple devices including an iPad, iPhone, iPod Touch, Mac and even a Windows personal computer.
Apple users will vouch for the iCloud as an essential feature, one which backs up users’ documents, photos, contacts and more to the cloud, in their latest versions. Notably, the iCloud Keychain feature also grants users to store credit card details and passwords, in order to autofill the details on their authorized computers. However, such functionality brings with it, certain vulnerabilities.
Read more here: