A new cyberattack targeting iPhone users is underway, with criminals using a “phishing” campaign to steal individuals’ Apple IDs, according to security software company Symantec. The attack involves sending text messages to iPhone users in the U.S. that pretend to be from Apple but are actually attempts to obtain victims’ personal credentials. Apple IDs are a valuable target for cybercriminals, as they provide access to devices, personal and financial information, and potential revenue through unauthorized purchases.
Symantec warns that consumers are more likely to trust messages from trusted brands like Apple, making them vulnerable to such attacks. The malicious SMS messages appear to come from Apple, encouraging recipients to click on a link and sign in to their iCloud accounts. Such attacks, known as “smishing” schemes, use fake text messages to deceive people into sharing sensitive information like account passwords and credit card data. To protect themselves, iPhone users should be cautious about opening text messages from unknown sources, avoid clicking on suspicious links, and enable two-factor authentication for their Apple ID.
It is essential for users to be vigilant and verify the authenticity of messages and requests for personal information. Apple emphasizes that its support representatives will never ask for sensitive information like passwords or authentication codes. Additionally, the Federal Trade Commission recommends keeping security software updated on computers and mobile devices to prevent falling victim to phishing scams. By staying informed and taking necessary precautions, individuals can protect themselves from cyber threats and safeguard their personal information.