Remote assistance is becoming more and more popular to troubleshoot computer issues without the hassle of bringing the problematic machine to a store. Indeed, from the comfort of your own home you can let a Certified Technician remotely log into your PC and have them fix the issues you are facing.
Apple offers a screen sharing service part of its support center that puts you in touch with a remote advisor. The process is secure and requires a unique session key to authenticate into the system that the customer needs to enter at the following URL: https://ara.apple.com
In today’s post we will talk about how we discovered that crooks are abusing this feature and fooling Mac users into trusting them.
As we have been documenting it so many times on this blog, there has been an explosion of tech support scams via malvertising and fraudulent affiliates. All systems are targeted, not just Windows PCs and in fact, fraudulent warnings for Mac are getting extremely common.
These pages are designed to scare people into thinking there is something wrong with their computer. Fraudsters will use all sorts of messages, audio warnings and other artifacts in order to social engineer marks into calling for assistance.
Typically scammers will have the victim browse to LogMeIn or TeamViewer and have them download the remote software necessary to take remote control. However, and especially in this case that involves Apple consumers, this step may seem unnatural, not part of the whole “Apple experience”.
For this reason, the crooks registered a website with a domain name that looks like the real Apple one (ara.apple.com) by calling it ara-apple.com. The site was registered through GoDaddy and resides on IP address 184.168.221.63.
This domain is used for everything from linking to the remote programs the ‘technician’ will use:
to processing payments (note how the ‘Secure Payment’ page is using regular, unencrypted HTTP)
We have contacted both the registrar (GoDaddy) and hosting provider (Liquid Web) so that they can take appropriate actions in shutting down these fraudulent websites.
This particular case shows that tech support scammers are resorting to more elaborate ways to social engineer their victims. Perhaps Apple users are even more at risk because they may be less experienced at dealing with these kinds of “errors”.
As always, please be particularly suspicious of alarming pop ups or websites that claim your computer may be infected. Remember that Apple would never use such methods to have you call them or would never call you directly either.
For more information about tech support scams and a comprehensive list of known malicious sites and phone numbers, please check out our resource page.








COMMENTS
Pingback: Support scams that plagued Windows users for years now target Mac customers |()
Pingback: Support scams that plagued Windows users for years now target Mac customers - The Best Tech News()
Pingback: Support scams that plagued Windows users for years now target Mac customers - Apple Mac Training UK()
Pingback: Support scams that plagued Windows users for years now target Mac customers | World Updates()
Pingback: Support Scams: Splashes in the Phish Pool - ITsecurityITsecurity()
Pingback: Support scams: fake Apple site - The AVIEN Blog()
Pingback: Pengguna produk apple? berjaga-jaga dengan scam baru melibatkan bantuan teknikal | Kedai KoPi()
Pingback: Support scams and Apple: update | Mac Virus()
Pingback: Apple Support Scams Update | Check Chain Mail and Hoaxes()
Pingback: Tech Support scams hit the Apple ecosystem | SecurityWatch()
Pingback: Mac and iOS Users Now Targeted In Tech Support Scam | Digital Trends()
Pingback: Mac users now affected by classic Windows support scams - AndroidUse()
Pingback: Support scams now target Mac customers | South Ashford()
Pingback: Tech Support scams hit the Apple ecosystem | Dennis Nadeau Complaint Blog()
Pingback: Support scams that plagued Windows users for years now target Mac customers | Ars Technica()
Pingback: Une arnaque web propre à Windows s’exporte sur Mac - iPhone3GSystem()
Pingback: Mac users now affected by classic Windows support scams | mind your mac()
Pingback: Support scams that plagued Windows users for years now target Mac customers | Lindauer Mac Consulting()
Pingback: Scamming Through Social Engineering | Anthony Korkhin's Blog()
Pingback: Windows-scammers richten zich op Apple-computers - Roland Helpt Computersupport()
Pingback: Support scams that plagued Windows users for years now target Mac customers | I actually hate shopping.()
Pingback: Windows support scammers broaden their horizons, begin targeting Macs | mind your mac()
Pingback: 화면 공유좀…애플지원센터 가장한 피싱사이트 - 테크홀릭()
Pingback: Beware! Tech Support Scams Target Apple Mac Users - Fortune()
Pingback: Support scams that plagued Windows users for years now target Mac customers | River Net Computers | Frenchtown, NJ()
Pingback: Betrugsmasche: Der Falsche Apple-Support - botfrei Blog()
Pingback: Tech support scammers put Mac owners in crosshairs | Templar Shield()
Pingback: Tech support scammers put Mac owners in crosshairs - GeekTechTalk()
Pingback: Mac-Reparatur: Betrüger tarnen sich als Apple-MitarbeiteriTopnews.de – Aktuelle Apple-News & Rabatte zu iPhone, iPad & Mac | iTopnews()
Pingback: Technical Support Scammers targets Apple users - Systerity()
Pingback: Mac users now affected by classic Windows support scams | App Showcase Wordpress Theme()
Pingback: Centro de Suporte da Apple usado para fraude - Jornal de Noticias()
Pingback: Centro de Suporte da Apple usado para fraude | Appleweare()
Pingback: IT Technical Support Job at Philly and Mools Automobiles Limited - Fresh Career Jobs()
Pingback: Los scammers siguen con sus ataques en territorio Mac | Trucos para Movil - Todos los trucos para Android()
Pingback: FINCA Nigeria Graduate Quality Assurance Officers Recruitment - Latest Nigeria Jobs & Vacancies()