Apple iCloud used as come-on for phishing bait

Users of Apple Inc.’s MobileMe service were warned over the weekend against a new phishing scam exploiting Apple’s upcoming iCloud service. Computer security firm Sophos said emails claiming to come from “The Apple store Team" ask prospective victims to sign up for iCloud and click the “submit" button. “Please sign up for iCloud and click the submit botton (sic), you’ll be able to keep your old email address and move your mail, contacts, calendars, and bookmarks to the new service," a Sophos blog post cited a sample email. Sophos noted Apple is planning to shut down its MobileMe service in mid-2012, in time for the new iCloud service, which will store music, photos, calendars, and documents in the cloud. “Understandably, a lot of MobileMe users are interested in how they will migrate to iCloud and this is the issue that the phishing email uses as bait," it said. But it said clicking on the link in the email will take the user to a third-party site that is trying hard to present itself as an Apple-style site. The site will ask the victim for credit card details, address, social security number, full date of birth, mother’s maiden name and Apple ID credentials. “Crumbs! Imagine the harm a fraudster could cause with all that information. Make sure you have your eyes peeled for phishing attacks, and be on your guard regarding unsolicited messages you receive in your inbox. It could be you who gets hit by a phishing attack next," it said. — TJD, GMA News