Muschamp Rd

Frickin’ Russians

September 19th, 2013
Phishing graphic

I just got an email that looked like it came from Apple. It looked like I or someone pretending to be me had changed some settings on my AppleID, something that is entirely possible given I’ve had to reset my password many times and I just downloaded several major updates from Apple yesterday. But was it a real email from Apple, no it was a phishing exercise from Russia.

Nothing good ever comes from and I know Russians, this email comes from whatever that is. Here is the email with complete Internet headers, don’t get fooled by this Apple fans.

From ???@??? Thu Sep 19 16:42:37 2013
Return-path: <>
Delivery-date: Thu, 19 Sep 2013 19:26:44 -0400
Received: from [] (
	by with esmtps (TLSv1:AES256-SHA:256)
	(Exim 4.72)
	(envelope-from <>)
	id 1VMncR-0004JC-Rg
	for; Thu, 19 Sep 2013 19:26:44 -0400
Received: from www by with local (Exim 4.69 (FreeBSD))
	(envelope-from <>)
	id 1VMnj1-0002qO-U0
	for; Fri, 20 Sep 2013 03:33:31 +0400
Date: Fri, 20 Sep 2013 03:33:31 +0400
From: AppIe <>
Subject: Notice of Update
Message-ID: <>
X-Priority: 3
X-Mailer: PHPMailer ( [version ]
MIME-Version: 1.0
Content-Transfer-Encoding: 8bit
Content-Type: text/html; charset="iso-8859-1"
Sender: World Wide Web Owner <>

[	This message was sent as HTML. The text you see here was	]
[	generated by Mailsmith; the original HTML is available as	]
[	an enclosure.												]


The following information for your ID was updated :

   Account informations

If these changes were made in error, or if you believe an unauthorized person 
accessed your account, please reset your account information immediately 
by going to <>.

This is an automated message. Please do not reply to this email. 

Apple Customer Support

Leave a Reply

I hereby reserve the right to delete, edit, and/or mark your comments as spam.

XHTML: You can use these tags: <a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <s> <strike> <strong>

Posts on Muskblog © Andrew "Muskie" McKay comments not necessarily so...
CFA Institute does not endorse, promote or warrant the accuracy or quality of Muskblog. CFA® and Chartered Financial Analyst® are registered trademarks owned by CFA Institute.