Hackers are targeting Mac users by sending fake Apple security warnings that are intended to scare them into thinking their computers have been locked down.
According to security vendor LayerX, the “scareware” campaign has been hosted on malicious sites designed to resemble the official domains of major companies. An unsuspecting victim can encounter the attack if they mistype a web address. For example, we encountered the attack when we typed aplee[.]com into our browser instead of apple.com.
How the attack appears on Safari on a Mac. (Credit: PCMag/Michael Kan)
According to LayerX, the hacker compromises parked domains that contain such typos to forward unsuspecting users to the malicious site. That produces warnings pretending to come from…