A Case Study in Phishing | MacSparky

A Case Study in Phishing | MacSparky — While this is a great example of how sophisticated phishing scams can look on the surface, just beneath the veneer are all the crude signs that scream scam. Perhaps the crudest is how greedy these scammers are, you might think they’d look up the subscription prices before trying to ape them.

The first tool you need in fighting Spam is common sense. YouTube Red does not cost $149.99/month, and a simple search will tell you that. If there is any question, also take a closer look at the details. The sender lists their name as “App Store” but disclosing the actual email address; it’s “noreply11@fillappealform.com”. Does that really sound like an address Apple would send you to confirm a subscription? Also, it lists “Payment Method” as “By Card”, not the usual xxxx-xxxx-1234 you usually see. It also creates this sense of urgency, explaining I'm on a free trial but I will be charged $150 in just two days if I don't act. While I can see how this email may fool some people, on the barest scrutiny, it starts looking shady.

Permalink