Malicious Apple Store Gift Card Scam Emails Target Users with Malware - MacRumors
Skip to Content

Malicious Apple Store Gift Card Scam Emails Target Users with Malware

by

Security researchers from Webroot have revealed a malicious email campaign attempting to trick users into thinking they’ve received a $200 Apple Store Gift Card. But rather than being a simple phishing effort as is common with such emails, the malicious emails contain malware that can be used to compromise targets' Windows-based machines.

apple_malicious_email
Specifically, when the user clicks on a hyperlink within the email or opens an attachment, a malicious Java-based exploit installs itself onto the computer. The exploit is then used to steal data from the personal computer, opening up the user to the possibility of identity theft and other cyber-crimes.

A currently ongoing malicious spam campaign is attempting to trick users into thinking that they’ve successfully received a legitimate ‘Gift Card’ worth $200. What’s particularly interesting about this campaign is that the cybercriminal(s) behind it are mixing the infection vectors by relying on both a malicious attachment and a link to the same malware found in the malicious emails. Users can become infected by either executing the attachment or by clicking on the client-side exploits serving link found in the emails.

Earlier this year, a phishing effort compromised over 100 sites in attempt to gain access to users’ Apple ID accounts. Last month, researchers from various security firms uncovered a trojan known as Janicab.A that used a special unicode character to initiate email malware attacks. Apple has also regularly dealt with Java-related vulnerabilities by deploying updates for OS X and introduced Gatekeeper in OS X Mountain Lion to better deal with security threats, offering a way for users to restrict installation of apps to those signed by Apple-issued Developer IDs.

Top Rated Comments

keysofanxiety Avatar
keysofanxiety
167 months ago
But rather than being a simple phishing effort as is common with such emails, the malicious emails contain malware that can be used to compromise targets' Windows-based machines.

Windows machines? Compromised?

I'll never believe it!
Score: 6 Votes (Like | Disagree)
Shrink Avatar
Shrink
167 months ago
Unfortunately most people who fall for these things are old or just plain careless.
It never ceases to to amaze me that us old, simple minded and gullible old coots ever got to be old, simple minded coots as gullible as we are. You would think, as simple minded as we are, that we would ave been tricked into some deathly trap long before we got to be old and gullible.

Luckily, we have you young, sharp, never-fooled-by-anyone folks to guide us and point out how easy it is to hoodwink us.

BTW: Tha Nigerian Prince thing should pay off any day now...
Score: 5 Votes (Like | Disagree)
jonnysods Avatar
jonnysods
167 months ago
You gotta be crazy clicking on stuff like this. But it would totally fool my dad!
Score: 3 Votes (Like | Disagree)
S.B.G Avatar
S.B.G
167 months ago
There's no red flags in that email! haha :D
Score: 3 Votes (Like | Disagree)
mrgraff Avatar
mrgraff
167 months ago
Oh yeah because I totally hate Windows and it soooo never works

Why do I keep trying to post obviously humorous things on MacRumors? I never learn...
Score: 2 Votes (Like | Disagree)
charlituna Avatar
charlituna
167 months ago
Java once again. Those who fell for it must have been using Internet Explorer or something.

Or really old versions of Java etc.

That is the trick with many of these attacks. Folks not keeping their stuff up to date. We need to get users into the mind set that software updates, at least point ones are like getting booster shots, taking vitamins, getting sleep. You have to do them. Like the folks griping about excessive cell data use etc but never updated iOS 6 when that fix came out
Score: 2 Votes (Like | Disagree)
Read All Comments

Popular Stories

Apple Wallet

iOS 27 Will Add Two New Apple Wallet Features to Your iPhone

Monday June 1, 2026 12:15 pm PDT by
Apple is set to unveil iOS 27 during its WWDC 2026 keynote on Monday, June 8, and the update will reportedly include two new Apple Wallet features. First, iOS 27 will reportedly let users create their own digital passes by scanning items like movie tickets, concert passes, and gym membership cards. Many apps already offer Apple Wallet passes, but now users will be able to create a custom...
Read Full Article
HomePod mini and Apple TV Sage

New Apple TV and HomePod Mini Are 'Nearly Ready' to Launch, New Siri Remote Also Rumored

Sunday May 31, 2026 8:47 am PDT by
New models of the Apple TV 4K and HomePod mini are "nearly ready to go," according to the latest word from Bloomberg's Mark Gurman. Subscribe to the MacRumors YouTube channel for more videos. Both devices have been ready "for months," but Apple is holding off on launching them until the more personalized version of Siri is available, he said. "I am told the hardware for the next Apple TV...
Read Full Article141 comments
Apple Foldable Thumb

First 'Confirmed' iPhone Ultra Color Allegedly Revealed in Leaked Image

Monday June 1, 2026 4:39 am PDT by
Apple is expected to launch its first foldable iPhone later this year. Rumors suggest the "iPhone Ultra" will come in two color options, and a leaker shared an image today that allegedly shows one of them. Posted on Weibo by the Chinese leaker known as Ice Universe, the image purportedly offers a first glimpse of Apple's foldable in white. The device is believed to have entered early mass...
Read Full Article98 comments