Although I normally receive phishing spam on behalf of all the banks in Romania, and more recently the mobile phone operators in the US, today I received the above message in a format that seemed to come directly from Apple. The above message warns me that my Apple ID password has been successfully reset and tells me that if this procedure is wrong, I can access the Apple website to correct it. The problem is that the links in this email do not direct users to the Apple website, but to the website of a hacker who copied the Apple website template in order to trick users who enter their usernames and passwords there by offering the hackers.
After the hacker has your login data, he can enter the account, change the password and from there he can buy anything he wants from the App Store, spending all the money on your card. The problem with this kind of emails is that they come from addresses that appear to be from Apple, but are fake, and many users fall prey to them. Every time you receive an email of this kind, or similar, make sure that the addresses you are going to click on lead to the right websites, or possibly access those websites separately.
