Cybercriminals looking to cash in on new Apple users sent out a "vast" e-mail phishing attack on Christmas day to fool people into giving out their personal information and credit card details, noted one security vendor.
According to a blog post Monday by antivirus maker Intego, e-mail messages with the subject "Apple update your Billing Information" were sent out to users who owned Apple products. The fake e-mail prompts people to enter their Apple ID and password before asking them to update their account profile including their credit card information, the security vendor added.
"These well-crafted e-mail could fool many new Apple users, especially those who may have found an iPhone, iPod or iMac under their Christmas tree, and set up accounts with the iTunes Store or the Mac App Store for the first time," the blog post stated.
Intego also advised users to check for phishing e-mail by moving the mouse cursor over the link in the message and waiting for a tooltip to pop up. If it is a malicious e-mail, the URL that pops up will not be an apple.com address but, instead, will be a numerical address.
"Always look at the part right after the http:// in the URL. If it's not something.apple.com, then it's bogus."