An urgent warning has been issued to all 1.46 billion iPhone users after tech experts revealed a new cyber attack targeting Apple ID.
Bad actors use SMS phishing campaigns that send messages claiming to be from Apple and prompting users to visit an “important request” link about iCloud.
California-based security firm Symantec discovered the attack this month and warned that links lead to fake websites that prompt users to hand over their Apple ID details.
Apple has put guidelines in place for such an attack and encourages iPhone owners to use two-factor authentication, which requires a password and a six-digit verification code to access their account from an external device.
Bad actors use SMS phishing campaigns that send messages claiming to be from Apple and prompting users to visit a link to an “important request” for iCloud.
“These credentials are highly valued, providing control over devices, access to personal and financial information, and potential revenue from unauthorized purchases,” Symantec said on its website.
“Additionally, Apple’s strong brand reputation makes users more likely to trust deceptive communications that appear to be from Apple, further increasing the attractiveness of these targets for cybercriminals.”
The company issued the warning on July 2, noting that it had noticed a malicious SMS floating around that read: “Important Apple iCloud Request: Sign in to visit[.]authentic connection[.]info/icloud so you can continue using your services.”
Symantec discovered that hackers added a CAPTCHA to the fake website to make it look legitimate.
Once done, it will transfer the user to the outdated iCloud login template.
Apple noted on its support page that fraudsters may also ask iPhone users to disable features such as two-factor authentication or device theft protection.
“They will claim that this is necessary to stop an attack or to allow you to regain control of your account,” the tech giant said.
Symantec discovered that the hackers added a CAPTCHA to the fake website to make it look legitimate, and when it was done, it redirected users to an outdated iCloud login template.
“However, they are trying to trick you into lowering your security so they can carry out their own attack.
“Apple will never ask you to disable any security feature on your device or your account.”
There are ways to identify scams – and the link in the text is a dead giveaway.
Although the message may look trustworthy, the URL will not match Apple’s website.
The tech giant also shared that hackers typically send texts that look significantly different from the company’s standard.
Scams aren’t limited to impersonating Apple either, as many users have reported text messages claiming to be from Netflix, Amazon and other well-known companies.
These fake messages claimed that users’ accounts had been frozen or their credit cards had expired, prompting them to click on a link that requested personal or bank account information.
“If you receive a text message you didn’t expect asking for personal or financial information, don’t click on any links,” the Federal Trade Commission warned.
‘Legitimate companies will not ask for your account information via SMS.’
“If you think the message may be real, contact the company using a phone number or website you know to be real. Not the information in the text message.”