Current:Home > MarketsNew cyberattack targets iPhone Apple IDs. Here's how to protect your data.-InfoLens
New cyberattack targets iPhone Apple IDs. Here's how to protect your data.
View Date:2024-12-23 11:59:51
A new cyberattack is targeting iPhone users, with criminals attempting to obtain individuals' Apple IDs in a "phishing" campaign, security software company Symantec said in an alert Monday.
Cyber criminals are sending text messages to iPhone users in the U.S. that appear to be from Apple, but are in fact an attempt at stealing victims' personal credentials.
"Phishing actors continue to target Apple IDs due to their widespread use, which offers access to a vast pool of potential victims," Symantec said. "These credentials are highly valued, providing control over devices, access to personal and financial information, and potential revenue through unauthorized purchases."
Consumers are also more likely to trust communications that appear to come from a trusted brand like Apple, warned Symantec, which is owned by Broadcom, a maker of semiconductors and infrastructure software.
The malicious SMS messages appear to come from Apple and encourage recipients to click a link and sign in to their iCloud accounts. For example, a phishing text could say: "Apple important request iCloud: Visit signin[.]authen-connexion[.]info/icloud to continue using your services." Recipients are also asked to complete a CAPTCHA challenge in order to appear legitimate, before they're directed to a fake iCloud login page.
Such cyberattacks are commonly referred to as "smishing" schemes in which criminals use fake text messages from purportedly reputable organizations, rather than email, to lure people into sharing personal information, such as account passwords and credit card data.
How to protect yourself
Be cautious about opening any text messages that appear to be sent from Apple. Always check the source of the message — if it's from a random phone number, the iPhone maker is almost certainly not the sender. iPhone users should also avoid clicking on links inviting people to access their iCloud account; instead, go to login pages directly.
"If you're suspicious about an unexpected message, call, or request for personal information, such as your email address, phone number, password, security code, or money, it's safer to presume that it's a scam — contact that company directly if you need to," Apple said in a post on avoiding scams.
Apple urges users to always enable two-factor authentication for Apple ID for extra security and to make it harder to access to your account from another device. It is "designed to make sure that you're the only person who can access your account," Apple said.
Apple adds that its own support representatives will never send its users a link to a website and ask them to sign in, or to provide your password, device passcode, or two-factor authentication code.
"If someone claiming to be from Apple asks you for any of the above, they are a scammer engaging in a social engineering attack. Hang up the call or otherwise terminate contact with them," the company said.
The Federal Trade Commission also recommends setting up your computer and mobile phone so that security software is updated automatically.
- In:
- Apple
- iPhone
Megan Cerullo is a New York-based reporter for CBS MoneyWatch covering small business, workplace, health care, consumer spending and personal finance topics. She regularly appears on CBS News 24/7 to discuss her reporting.
veryGood! (73463)
Related
- Man killed by police in Minnesota was being sought in death of his pregnant wife
- Bodies from Prigozhin plane crash contained 'fragments of hand grenades,' Russia says
- FTX co-founder testifies against Sam Bankman-Fried, saying they committed crimes and lied to public
- Suspect in helmeted motorcyclist’s stomping of car window in Philadelphia is jailed on $2.5M bail
- Today's Craig Melvin Replacing Hoda Kotb: Everything to Know About the Beloved Anchor
- There are 22 college football teams still unbeaten. Here's when each will finally lose.
- New Mexico signs final order to renew permit at US nuclear waste repository
- Armed man seeking governor arrested at Wisconsin Capitol, returns later with rifle
- Why California takes weeks to count votes, while states like Florida are faster
- IMF chief says the global economy has shown resilience in the face of COVID, war and high rates
Ranking
- Mechanic dies after being 'trapped' under Amazon delivery van at Florida-based center
- Saudi Arabia in lead and maybe all alone in race shaped by FIFA to host soccer’s 2034 World Cup
- How Travis Kelce's Mom Donna Is Shaking Off Haters Over Taylor Swift Buzz
- Powerball jackpot rises to estimated $1.4 billion after no winners Wednesday
- Patricia Heaton criticizes media, 'extremists' she says 'fear-mongered' in 2024 election
- Spanish charity protests Italy’s impounding of rescue ship for multiple rescues
- IMF chief says the global economy has shown resilience in the face of COVID, war and high rates
- Jason Derulo Accused of Sexual Harassment by Singer Emaza Gibson
Recommendation
-
Advocates Expect Maryland to Drive Climate Action When Trump Returns to Washington
-
Federal judges pick new Alabama congressional map to boost Black voting power
-
Trump allegedly discussed US nuclear subs with foreign national: Sources
-
Thousands of US workers are on strike today. Here’s a rundown of major work stoppages happening now
-
Disease could kill most of the ‘ohi‘a forests on Hawaii’s Big Island within 20 years
-
Developed nations pledge $9.3 billion to global climate fund at gathering in Germany
-
AP Week in Pictures: Global | Sept. 29-Oct. 5, 2023
-
Nearly 4 million people in Lebanon need humanitarian help but less than half receive aid, UN says