A new cyberattack is targeting Apple ID accounts on iPhones. Here’s how to protect your data.

A new cyberattack is targeting Apple ID accounts on iPhones. Here’s how to protect your data.

A new cyberattack is targeting iPhone users, with criminals trying to obtain individuals’ Apple IDs in a “phishing” campaign, according to security software company Symantec. He said On alert on Monday.

Cybercriminals are sending text messages to iPhone users in the US that appear to be from Apple, but are actually an attempt to steal victims’ personal credentials.

“Phishing perpetrators continue to target Apple IDs because of their widespread use, providing access to a large pool of potential victims,” Symantec said. “This data is highly valued, providing control over devices, access to personal and financial information, and potential revenue through unauthorized purchases.”

Symantec, owned by Broadcom, a maker of semiconductors and infrastructure software, warned that consumers are also more likely to trust communications that appear to come from a trusted brand like Apple.

The malicious SMS messages appear to come from Apple and encourage recipients to click a link and sign in to their iCloud accounts. For example, the phishing message might say: “Important request from Apple iCloud: Visit Sign In”[.]Authentication connection[.]Recipients are also asked to complete a CAPTCHA challenge to appear legitimate, before being directed to a fake iCloud login page.

Such cyberattacks are commonly referred to as “SMS” schemes, where criminals use fake text messages from supposedly reputable organizations, rather than email, to lure people into sharing personal information, such as account passwords and credit card data.

How to protect yourself

Be careful when opening any text messages that appear to be from Apple. Always check the source of the message — if it’s from a random phone number, the iPhone manufacturer is definitely not the sender. iPhone users should also avoid clicking on links that invite people to access their iCloud account; instead, go directly to the login pages.

See also  New Steam Deck e-book outlines Valve's long-term vision

“If you suspect an unexpected message, call, or request for personal information, such as your email address, phone number, password, security code, or money, it’s best to assume it’s a scam — contact that company directly if you need to,” Apple said in a statement. mail About avoiding scams.

Apple urges users to always enable it. Two-factor authentication Apple has announced a new update to Apple ID that will provide more security and make it more difficult to access your account from another device. Apple said the update is “designed to ensure that you are the only person who can access your account.”

Apple added that its support representatives will not send users a link to a website and ask them to sign in, or provide their password, device passcode, or two-factor authentication code.

“If someone claiming to be from Apple asks you for any of the above, they are a scammer engaging in a social engineering attack. Hang up or otherwise end the call,” the company said. He said.

Federal Trade Commission also recommend Set up your computer and mobile device so that security software updates automatically.

Leave a Reply

Your email address will not be published. Required fields are marked *