9to5Mac has posted an email from one of the readers, which could be a new phishing attack targeting Apple customers. The email says:

We recorded a payment request from “Apple Inc.” to enable of $7548.45 on your account.
The payment is pending for the moment
If you made this transaction or if you just authorize this payment, please ignore or remove this email message. The transaction will be shown on your monthly statement as “Apple Inc.”
If you didn’t make this payment and would like to decline it, please download and install the transaction inspector module (attached to this letter).

The email has a zip file name ‘module’ attached. The zip file contains an exe file that only run on a Windows machine, but it is a good idea not to click on the file even if you are using a Mac

The reader who forwarded this email also wrote “Not seen this before, it has come at a time where I do have an open order with Apple for my new iMac. I did tweet something about waiting for my iMac this morning, I wonder if I was target because of that?”

It is very likely that the reader was targeted because of the tweet, as most phishing scams use social networking sites like Twitter to get information about potential targets.

Even though the malware doesn’t work on Mac, we would like to caution all our readers not to download files or open attachments from unknown emails on whatever OS they are using Windows, Mac or Linux.