The most common form of fraud is still to copy the iCloud service interface and then steal it.AppleUser's Apple ID account password.
(MacOS Phishing Number 2015-2019)
The source of these attacks usually starts with a spam email containing false links, and the sender always claims to be Apple's technical support staff.
(Number of users sharing phishing pages during the same period in the first half of 2018/2019)
Another widespread scam is to build an easy-to-attack Web page and try to convince lighthearted users that their computers are seriously threatened by security, then click on several installations or pay a few dollars to solve the problem.
Tatyana Sidorina, a security researcher at Kaspersky, said: "Technically, these fraudulent schemes are not new tricks, and we believe they are for Apple and other platforms, such asWindows/ Android) The threat posed by customers is comparatively similar.
The problem is that the closed ecosystem around Macs and other Apple devices is often considered a relatively safer environment, so users are more likely to take it lightly when confronted with fake websites.
At the same time, the login credentials of iCloud accounts that have been smoothly stolen are likely to lead to more serious consequences, such asIPhone/IPadThe attackee maliciously locks and extorts data from the device remotely, and erases the data on the device if the user does not pay a certain amount of ransom.
In view of this, Kaspersky hopes that Apple will urge its device users to be more attentive when receiving similar technical support emails, because they will often trick users into providing detailed information or clicking on a forged link they provide.
In addition, other surveys show that on Kaspersky-based Mac computers, nearly 6 million cyber-phishing attacks were detected in the first half of 2019, and 7.3 million hits were recorded in the whole year of 2018.
Among them, 39.95% of phishing attacks aimed at stealing users'financial data, an increase of 10 percentage points over the same period last year (2018 H1).
Finally, the number of phishing attacks in some areas is significantly higher than in others. Brazil ranked first with 30.9%, followed by India with 22.1% and France with 22%.
Among the malicious software attacks on macOS users, the most active one is the Shlayer series variant, which is spread mainly by disguising itself as Adobe Flash Player update package.