Welcome to 2016, and I hope that this will be your best year ever.
I just received an official-looking email from Apple with a security notice about a failed login attempt on a device in the UK:
My suspicions were alerted so I did a quick look at the email sender, which revealed: firstname.lastname@example.org
That’s not an email address coming from the official apple.com domain name, so I was about 90% certain that this was yet another phishing scam to get me to click a link. Step two was to hover over the blue link that they wanted me to click to see what URL they wanted me to land on:
OK, now I was 100% certain that this was a phishing scam because the URL is pointing to www.haven24.cool, which is certainly not in any way related to the official apple.com domain name.
This email looked quite official on the surface, but digging a bit deeper on my part instead of blindly clicking the phishing link protected my identity from being stolen and abused.