•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
A large-scale iPhone phishing campaign is circulating, using emails sent from Apple-domain addresses to lure recipients into calling a phone number to cancel a supposed order. The messages exploit a weakness in the Apple ID creation process, inserting deceptive details into fields such as the last name and first name. By altering shipping information, attackers trigger Apple’s automated email confirmations to victims. Because the emails originate from legitimate Apple system channels, spam filters fail to block them. The content of the emails includes a support phone number to cancel the order; when victims call, the attackers impersonate Apple staff to obtain sensitive information (passwords, OTP) and push victims to install remote-access software. Once control is gained, they carry out illicit transfers. While phishing campaigns often exploit mailing lists of tech giants like Google, Amazon, or Microsoft, this campaign’s use of Apple ID shows the audacity of the attackers. Experts advise remaining vigilant about any email urging you to call a unfamiliar number; instead, visit official apple.com or the Apple Store app to check order history. In particular, Apple would never require customers to install remote-access software for technical support.
Premium gym chains are entering a “golden era” that is ending or already in decline, as rising operating costs collide with shifting consumer preferences toward more flexible, community-based ways to exercise. Long-term memberships are shrinking, margins are pressured by higher rents and facility expenses, and competition from smaller, more personalized…
