Scams using her name are not uncommon, but web-hosted phishing pages areσελίδα of another large company is definitely worth looking into. Experts discovered a phishing page hosted on a compromised server belonging to Electronic Arts (EA), a world-renowned video game company.
Experts from Netcraft report that the attackers violated a server hosting two domains of ea.com.
That said server φιλοξενεί μια παλιά έκδοση ( 1.2.0) της ημερολογιακής applicationς WebCalendar. Η έκδοση αυτή υπάρχει από το 2008 και ήταν γεμάτη τρωτά σημεία που μπορούσαν να αξιοποιηθούν από τους hackers. Για παράδειγμα, οι επιτιθέμενοι μπορούσαν να εκμεταλλευτούν την ευπάθεια CVE-2012-5385, μέσω της οποίας τροποποιήσαν τις ρυθμίσεις και ενδεχομένως εκτέλεσαν κάποιο κακόβουλο code.
The fake page is designed to look like its login page Apple Lossless Audio CODEC (ALAC), and in which the victims should enter their Apple ID and their password. He then asked for the name and number of the payment card, the expiration date, the CVV number, the date of birth and other personal information.
When information was given to cyber criminals, the victims were transferred to the actual Apple website, so they would not be suspicious.
The problem with phishing pages hosted on trusted servers is that they are very difficult to detect.