Have you received any random texts from Apple recently? Careful – it may be a cyber criminal preying on your information.
In a recent alert, security software company Symantec has warned of a new cyberattack targeting iPhone users in the U.S., aiming to steal their Apple IDs through a “phishing” campaign. This attack involves cybercriminals sending illegitimate text messages that appear to be from Apple, tricking recipients into revealing their personal credentials.
What is Smishing?
Smishing is a type of cyber-attack where criminals pose as reputable organizations to deceive individuals into sharing sensitive information, such as account passwords and credit card details.
The Phishing Tactics
The text messages, disguised as communications from Apple, prompt recipients to click on a link and sign in to their iCloud accounts.
An example of such a message might read: “Apple important request iCloud: Visit signin[.]authen-connexion[.]info/icloud to continue using your services.”
To add legitimacy, victims may be asked to complete a CAPTCHA challenge before being redirected to a fake iCloud login page.
How to Protect Yourself
- Verify the Source: Just because a sender claims to be a legitimate source, does not mean they are. Avoid clicking on links; instead, go directly to the login page via your browser.
- Multi-Factor Authentication: Use MFA for your Apple Id for an extra layer of safety.
- Recognize Scams: Apple support representatives will never send users a link to a website asking for passwords, device passcodes, or two-factor authentication codes. If someone claiming to be from Apple asks for such information, it’s fake.
- Regularly update the security on all of your devices.
Always be wary of new cyber threats and continue to stay vigilant. For more cybersecurity tips and tricks, sign up for our monthly newsletter here.
Leave a Reply