Symantec, a California-based security firm, has issued a new warning to iPhone users after finding that cybercriminals are actively seeking to exploit Apple IDs through malicious SMS messages, which are designed to trick recipients into revealing their Apple ID credentials. It’s also used by hackers to access other sensitive information or to install malicious software on your iPhone.
Symantec reports that it discovered a very recent case” of “smishing” in the United States which involves hackers distributing deceptive SMS messages that appeared to be from Apple. If a user clicked on the malicious link, they were then directed to a webpage which mimicks an outdated iCloud login template where they were encouraged to enter their credentials.
Symantec also said that the scammers even included a CAPTCHA, which users had to complete before proceeding (to prove they were human) in order to make the phishing attack appear more legitimate. The fake website could even be accessed from a desktop or mobile browser, which the cybersecurity firm said is unusual for SMS phishing.
Of coarse, these types of scams are not just limited to Apple. Users of other devices have also reported that scammers are trying to trick them into revealing their credentials as well.
And as always, a good rule to follow to avoid scams or identity theft is to never open suspicious emails or click unsecured links from unknown emails, and be cautious when answering calls or responding to messages from unidentified senders.