In this post, we will go over a recently reported spam scheme known as the Iforgot.apple.com scam. This is a typical example of a phishing scam – the user receives a spam message that is disguised as a letter from Apple, or from some other respected company or organization. The message is supposed to lure the user into opening a certain link that redirects to a phishing page. Such phishing pages are designed to have the exact same look and feel like the site they are supposed to mimic. Usually, the page would require you to fill in some personal data like banking numbers, passwords, etc., under the premise that your account info needs to be updated or that your account has been blocked and you need to unblock it by providing the required personal details.
Of course, the end goal of the hackers behind such scams is to get their hands on your information, and to later use it for identity theft, money extortion, blackmailing, and more.
The Iforgot.apple.com spam scam
To avoid the Iforgot.apple.com spam scam, you can test the questionable link. Hover your mouse over the link but do not click on it! After a second or two, the URL to which the link redirect should become visible. If the URL address isn’t the one of Apple’s official site (or of the site of the company that has supposedly sent you the message), do not open it – the email is almost certainly a scam!
Another reliable indication that an email letter is related to a phishing spam scheme is if the sender refers to you by your email’s username, and not by your real name. Sites like Apple’s official site keep records of each user’s actual names, and would always refer to you by that name – scammers like the ones behind the Iforgot.apple.com spam won’t.
A third sign that you are most likely dealing with a scammer is the fact that an email letter requires you to provide personal info. Apple would never do that – if they want you to give them some verification info, they would do that inside their own site, and not via an email letter.
Ensuring your system stays safe
Usually, if you didn’t click on the link or didn’t provide any personal info on the phishing page, you don’t really need to do anything aside from deleting the spam e-mail. However, since there are all kinds of sneaky software components that may be related to spam schemes such as the Iforgot.apple.com, it’s still advisable to check your system and make sure there isn’t anything hazardous in it. If you use the guide offered below, you should be able to clean your machine from any potential hazards that may have something to do with the scam. It is especially important to check your system if you have clicked on any of the links or file attachments that may have been added to the Iforgot.apple.com spam emails.
Remove the Iforgot.apple.com Spam Scam
Search Marquis is a high-profile hijacker – you might want to see if you’re not infected with it as well.
You can find the removal guide here.