A new cyberattack is targeting iPhone users in the U.S., with criminals attempting to steal Apple IDs through a phishing campaign, according to security software company Symantec. The attackers send text messages that appear to be from Apple, urging recipients to click a link and sign in to their iCloud accounts. The messages include a CAPTCHA challenge to seem legitimate, but direct users to a fake iCloud login page to capture their credentials.
To protect against this scam, iPhone users should be cautious about opening text messages that claim to be from Apple, especially if they come from random phone numbers. Instead of clicking on suspicious links, users should navigate directly to login pages. Apple advises users to presume unexpected messages requesting personal information are scams and to contact the company directly if needed. Enabling multi-factor authentication for Apple ID is recommended for added security.
Apple emphasizes that its support representatives will never ask users to sign in via a link or request passwords, device passcodes, or two-factor authentication codes. Users are encouraged to follow these guidelines to ensure their accounts remain secure and to avoid falling victim to phishing attempts.
