14 DAY TRIAL // Tech support scams have been around for years, and in almost all cases, they have been targeting Windows users, fooling them into paying for support software or services victims don't necessarily need.
As Macs has become more and more popular, scammers have been slowly turning their attention towards a whole new area of revenue, and as Malwarebytes has recently reported, they haven't been shy at all, with "fraudulent warnings for Mac getting extremely common."
One of the most recently observed campaigns targets the Apple Remote Access service located at ara.apple.com, which allows Mac users to request tech support from Apple-certified staff by entering a session key generated locally on their computer and granting the company's employees remote access to their computer.
As Malwarebytes' staff is reporting, fraudsters have registered a similar-looking domain at ara-apple.com, to which they're redirecting victims of various scareware and malvertising campaigns.
Once users land on this fake website, they're asked to buy all sorts of remote support programs that "Apple's" technicians will use to debug their Mac.
The danger is doubled by the fact that the payment page is not even protected by an HTTPS connection, allowing other attackers to sniff out payment details.
This particular site is obviously part of a big tech support scam operation, which targets users of all colors, filters them by the browser's user agent string, and sends them to scam pages based on their underlying OS.
