According to 9to5Mac, at the recent Black Hat Asia cybersecurity conference, Korean researchers warned of a sophisticated fraud scheme targeting the Apple Store Online store, which is believed to have stolen more than $400.000. (about 10 billion VND) in the past 2 years.
This trick is called 'Poisoned Apple' or 'PoisonedApple', and is methodically used by combining stolen credit cards and Apple's 'Someone else will pick it up' delivery service for profit.
Regarding the credit cards that cybercriminals are exploiting, researchers at the Korea Institute for Financial Security said they may be related to a series of cyberattacks targeting more than 50 online stores in Korea. was discovered in September 9.2022, causing many payment information to be stolen.
To deploy 'PoisonedApple' crimes, crooks will start by selling new Apple products at 'soft' prices on online second-hand stores. When someone wants to make a purchase, they will use the stolen credit card information to buy products from the Apple Store Online. However, instead of requesting delivery, the crook will select the option 'Someone else will pick it up'.
This option will allow them to designate another person, usually an unsuspecting bargain shopper, to come to the Apple Store to pick up the product using a QR code and identification. After receiving the product, the buyer will pay the fraudster through the online store, then these criminals will earn a large profit.
This sophisticated trick is especially dangerous because it takes advantage of buyers' trust in Apple and the company's delivery service. Victims do not know that they are participating in a scam and unknowingly help the crooks steal money from an unfortunate victim's credit card.
According to research, 'PoisonedApple' is mostly discovered in Korea and Japan. However, researchers believe that this trick can also be performed in many other countries with Apple Store Online. They urge users to be wary when buying online, especially at low prices, and to only buy from reputable retailers.