MX Lab researchers recently came across a phishing e-mail that comes from the spoofed e-mail address client [at] apple.com with the subject line "Reactivation No: A3556P325LL346E?" (h/t Softpedia).

"We inform you that your account is about to expire in less than 48 hours, it is imperative to conduct an audit of your information now, otherwise your account will be deleted," the e-mail states. "Download the attached form and open it in your browser and make your request."

If the recipient opens the attachment, named Apple.html, a form asks for the user's Apple ID, password, full name, address, birthdate, credit card number, expiration date and CVV code.

Anyone who's foolish enough to fill in the form and click on "Validate the information" is then redirected to an actual Apple Store login page.

Photo courtesy of Shutterstock.