قالب وردپرس درنا توس
Home / Mac / Beware of phishing – False "Apple Limited"

Beware of phishing – False "Apple Limited"



See previous security tips and past phishing posts.

Almost all phishing uses bait (and you are the fish). Bait can be subtle, threatening or insulting. No bites . All bait is designed to provoke a reaction: fear, anger, an appeal to your innate destiny to help with or solve a problem, etc. Appeals to determination and honesty because most people will put things right even if they did not cause The problem – there is a desire to help.

Do not let feelings be asked to help someone HACK you .

Below the attached screenshot shows a relatively serious attack, but more real-looking than a very incorrect phishing email I received last year.

NEVER CLICK ON LINKS OR ACCESSORIES IN E-MAIL!

Never means never unless you get technical expertise to confirm the email. Nevertheless, it may sometimes take more minutes to be sure ̵

1; and the more sophisticated phishing, the easier it is to overlook an important detail. Hackers do a better and better job of making fake emails look real.

Details about the risk of this email further below.

Phishing email that exploits concern, claiming to be from Apple

Apple's risky approach in Mail is unacceptable

Why does Apple Mail EVER allow this level of exposure to risk?

Safari has active detection of malware websites, but Apple Mail makes it easy to outbound links so that they can be clicked and thus a serious risk . [19659002] It is time that Apple provided such security practices in Apple Mail. Users should not be aware of such risks – the risk should be eliminated . We get new emojis with each OS issue with top-end invoicing in Apple press releases, but Apple can not be bothered to fix a core alert for Apple Mail?

The correct first step Apple should take is to disable all outbound links in all email addresses so they can no longer be clicked as links. Bonus points to show the actual destination URL instead of the title. In terms of security, 99% of users would be well served by this. And will pee and moan about loss of convenience, but it's smart to do by default.

Then let the user downgrade the security from there, for example, clickable links to (1) only sites that were previously visited and (2) known good places and (3) enable all places that are allowed now for those who like to take risk. A bonus feature would be to change the links, so clicking on a presents a dialog box showing the actual destination URL and a rating for safe, uncertain, unknown, and allowing the user to risk choosing. I consider this a useful thing for technically skilled users, unfortunately for most.

Why did not Apple solve this dangerous practice right in Apple Mail, and did it two years ago ? My view is that Apple Mail's development team has certainly been hurt in recent years, because Apple Mail is in a hurry.

See also:


Source link