Just when the CEO of Apple, Steve Job announced about the Apple iCloud, hackers begin to do a pre-launch before even Apple started. Remember the Mac Malware issue where Apple was heavily hit with a Scareware, this time around is the Apple iCloud and I am not too sure is it the same person behind this. However, the difference for this time is that it is not targeting only the Mac user, but also the Windows user. On the other hand, the similarity between the previous Mac Malware and Apple iCloud attack is that it also forced the user to buy a rogue anti spyware program.
How Apple iCloud Phishing Works
The attacker this time make use of some blackhat SEO (Search Engine Optimization) technique to make any search for ‘Apple iCloud’ or ‘iCloud Apple’ to rank very high in search engine. They focused mainly on ranking high in Google search engine. Hence, when a user search for the highly targeted keyword such as ‘Apple iCloud’, those websites that the attacker created will appear in the first few of the list. Those websites will redirect the user to some malicious site and then forced the user to download a file called SecurityScanner.exe, from what the Trend Micro blog mentioned.
The downloaded file is a Malware where if the user clicks on it, it will disable all the browser in that computer and scare the user that it can only be fixed with purchasing a rogue anti spyware called Windows Antispyware for 2012. This scenario looks quite similar to the one we saw back in the Mac Malware attack.
Apple iCloud Attack – What Can You Do
Since we know that the search term ‘Apple iCloud’ is hot for the attacker to target us, we should be careful when we search for it. Before accessing some unknown URL or URL that your friend gave you, you should always do a check by running a scan on that URL. If you happen to download any file from anywhere which you are not steadily firm whether it contains malicious item inside, just upload the item to Virus Total for a thorough check. We should always stay cautious especially when we know the strategy of the attacker so far. Any information regarding Apple iCloud, should always refer back to Apple official site for the time being to prevent from this attack.