Janice R. Andrews
Attackers are aiming to obtain Apple IDs from iPhone users in the United States by using a sophisticated “phishing” operation in a fresh round of cyberattacks. Broadcom-owned security software provider Symantec released a notice on Monday alerting customers to the fraudulent scheme.
The Onslaught
Scammers are pretending to be Apple in order to trick victims into clicking a link and logging into their iCloud accounts through text messages. This technique, called “smishing,” uses fictitious SMS messages from businesses that appear trustworthy in an attempt to coerce victims into disclosing sensitive information like credit card numbers and account passwords.
How It Operates
- This is how the fake texts could appear: “Apple important request iCloud: Visit signin[.]authen-connexion[.]info/icloud to continue using your services.” Before rerouting users to a phony iCloud login page, these messages include a CAPTCHA challenge to look genuine.
Symantec’s Alert
“Phishing actors continue to target Apple IDs due to their widespread use, which offers access to a vast pool of potential victims,” Symantec said. “These credentials are highly valued, providing control over devices, access to personal and financial information, and potential revenue through unauthorized purchases.”
Ways to Keep Yourself Safe
1.Check the Source: If a text message appears to be from Apple, proceed with caution before opening it. Verify the source at all times; if it comes from an unknown phone number, it’s probably not from Apple.
- Steer Clear of Suspicious Links: Never click on links in text messages that ask you to get into your iCloud account. Go straight to the official login page instead.
- Turn on Two-Factor Authentication: To increase security, turn on two-factor authentication for your Apple ID. In the event that someone else discovers your password, this guarantees that only you may access your account.
- Identify Scams: An Apple support agent will never send you a link that requests that you log in or enter your device passcode, password, or two-factor authentication code. Scammers are the ones asking for these if they are posing as Apple representatives. Cut off communication right away.
- Maintain Security Software Updating: The Federal Trade Commission advises configuring security software for automatic updates on your computer and smartphone.
Apple’s Guidance
“If you’re suspicious about an unexpected message, call, or request for personal information, such as your email address, phone number, password, security code, or money, it’s safer to presume that it’s a scam — contact that company directly if you need to,” Apple stated in a blog post about preventing scams.
Remain alert and take proactive steps to safeguard your personal data to avoid becoming a target of these hacks. Stay tuned to our coverage for more updates on cybersecurity and tech news.
