Following all of the attention Apple's iCloud service has received since a 4chan member posted stolen nude photos of celebrities, cybercriminals are now launching another wave of Apple ID phishing attacks. Apple has improved iCloud security, along with allowing users to see when their accounts have been accessed, but customers will have to stay on their toes to avoid being phished.
The criminals behind this phishing attack currently operate the Kelihos/Waledac botnet, as they expand their digital activities. The phishing email mimics an Apple website which users access by clicking a fraudulent email - and once the username and password has been submitted, the data is likely harvested.
"It is possible that the timing of the [phishing] campaign is not a coincidence and the controllers of the botnet are attempting to exploit public fears about the security of Apple IDs to lure people into surrendering their credentials," Symantec researchers recently noted.