Security experts at Sophos spotted a new phishing campaign targeting iCloud users. The attackers are interested in the victims financial data. The emails invite victims to repudiate an alleged Order made from their account. The cyber criminals highlight that the order is considered valid until iCloud users will not proceed to its cancellation, a social engineering technique that could be very effective. The security firm also provides useful suggestions to iCloud users, including: Use two-factor authentication (2FA) if you can.”]
Source: http://securityaffairs.co/wordpress/33313/cyber-crime/phishing-campaign-icloud-users.html