Criminals target Apple

01 Aug 2007

minute read

Authors

Roel Schouwenberg

Yesterday an email received by several of our spam traps caught my eye:

The money mule recruiters are getting more cunning. Apple is a hot brand and a lot of people would like to work for it, so the criminals decided to claim that they are an Apple Premium Reseller looking for employees. The entire site is created to look like an Apple site.

They even went through the trouble of altering an image by adding their logo onto a store to make the site seem more legit:

But in the end the message remains the same as with any other money mule recruitment:

Money gathered via cybercrime, with bank trojans for instance, is transferred to the bank accounts belonging to the money mules.

Multiple large transactions to the same foreign bank account make the internal alarms at banks go off. This is why the criminals are recruiting regular people under false pretences to receive the money for them.

Reports on people falling for these recruiments are on the up, unfortunately. Unlike with phishing emails, people are actually aiding criminals and there can be serious legal and financial repercussions. When banks detect that somebody is muling the police will freeze or block the bank account and obviously won’t like the criminal activity either.

In this particular case, with the level of social engineering so superior to other money mule recruitments, I can only imagine that it will be highly effective.
And it’s able to work under Windows, Linux and OSX. 😉

Authors

Roel Schouwenberg

Criminals target Apple

Latest Posts

Latest Webinars

Reports

New unattributed DuneQuixote campaign targeting entities in the Middle East employs droppers disguised as Total Commander installer and CR4T backdoor in C and Go.

In this report Kaspersky researchers provide an analysis of the previously unknown HrServ web shell, which exhibits both APT and crimeware features and has likely been active since 2021.

Asian APT groups target various organizations from a multitude of regions and industries. We created this report to provide the cybersecurity community with the best-prepared intelligence data to effectively counteract Asian APT groups.

We unveil a Lazarus campaign exploiting security company products and examine its intricate connections with other campaigns

Criminals target Apple

GReAT Ideas. Balalaika Edition

GReAT Ideas. Green Tea Edition

GReAT Ideas. Powered by SAS: malware attribution and next-gen IoT honeypots

GReAT Ideas. Powered by SAS: threat actors advance on new fronts

GReAT Ideas. Powered by SAS: threat hunting and new techniques

ZeroLocker won’t come to your rescue

A Post-PC BlackHat?

Adobe Updates April 2014

Trust. Trust. Trust

Adobe’s First Patch Tuesday of 2014

QR codes in email phishing

Phishing with hacked sites

Email crypto phishing scams: stealing from hot and cold crypto wallets

How scammers employ IPFS for email phishing

Mass email campaign with a pinch of targeted spam

Latest Posts

XZ backdoor story – Initial analysis

DinodasRAT Linux implant targeting entities worldwide

Android malware, Android malware and more Android malware

Threat landscape for industrial automation systems. H2 2023

Latest Webinars

The Future of AI in cybersecurity: what to expect in 2024

Responding to a data breach: a step-by-step guide

2024 Advanced persistent threat predictions

Overview of modern car compromise techniques and methods of protection

Reports

DuneQuixote campaign targets Middle Eastern entities with “CR4T” malware

HrServ – Previously unknown web shell used in APT attack

Modern Asian APT groups’ tactics, techniques and procedures (TTPs)

A cascade of compromise: unveiling Lazarus’ new campaign

Subscribe to our weekly e-mails