Thursday, December 7, 2017

Apple Phishing Email - Payment Confirmation for Order No. 6881237774449 App Store - Mobile Legend: Bang Bang on App Store

For the record, this is an Apple phishing email attempt that is recently going around. What to do?  Report them, goto bottom of page.


From : AppStore Order Receipt <nnnnnnnnnnnnnnn@mobilelegend-bangbang.net>

Subject
Payment Confirmation for Order No. 6881237774449 App Store
       
         
         
          Thanks for your purchase

Dear Client,

You’ve purchased a product from Mobile Legend: Bang Bang on App Store.
This is receipt your payment from YoungJoy Technology Limited.
Document ID Date Confirmed Status
6881237774449 Thursday, December 07, 2017 SUCCESSFUL
Mobile Legend: Bang Bang 1000 Diamonds
Type: Purchase in App 
Qty: 1 
Price: $29.99 
VIEW RECEIPT


VIEW RECEIPT points to evil link....
https://t.co/PxDb9TPL1A   which decompresses to
https://appleid.service-kopla.ga/



Didn't authorized this transaction?
Visit the App Store help center to dispute this transaction.

If you have any questions about this information, you can visit App Store help Center
Learn how to manage account preferences for iTunes, iBooks, and App Store Purchases
Help & Contact | Security | Privacy & Policy 

© 2017 All Right Resrved. Apple Distribution International, Hollyhill Industrial Estate, Hollyhill, Cork, Ireland.


Here's how the phishing site looks


How to tell this is a Phishing email ?


  1. Check email address in full, if it's not from originating company then it's phishing.
  2. Hover over all links in email, if it's not from the apple.com site then forget it.

  3. The best way is to look at message source, see below.

How to examine Email Message Source ?

Now lets look at message source
  1. Outlook.com->Actions->View Message Source. 
  2. Gmail.com->More (down arrow to top right)->Show original.
Check for suspicious links, anything that does not originate from apple.com.


Report Phishing Email (not as Spam)

  1. Outlook.com->Junk (at Top)->Phishing Scam
  2. Gmail.com->More (downarrow to top right)->Report Phishing 

Report Phishing URLs at Google now 

If you have recievied this email take further action now by click these links

  1. https://www.google.com/safebrowsing/report_phish/

Report phishing at Microsoft and government agencies

  1. http://www.microsoft.com/security/online-privacy/phishing-faq.aspx

Report phishing emails to Apple 

Forward the email to abuse@icloud.com. This provides Apple's legal department and law enforcement with useful information to help prevent future phishing emails.

No comments:

Post a Comment