iPhone users are warned not to click on any suspicious emails or SMS messages claiming to be from Apple.
A significant cybersecurity threat has emerged targeting Apple’s 1.46 billion active iPhone users. According to a report from security firm Symantec, attackers are conducting phishing attacks using fake emails and SMS messages that appear to be from Apple. These messages claim to contain important notices related to iCloud, aiming to deceive users.
How the Phishing Attack Works
Symantec’s findings reveal that these fake messages include links directing users to disclose their Apple ID numbers. The fraudulent websites mimic real ones, even including details like Captcha to appear legitimate. Once attackers obtain users’ Apple ID and passwords, they can lock access to iPhones and quickly exploit banking apps.
Apple’s Recommendations
To protect against such attacks, Apple advises users to enable two-factor authentication (2FA) for their Apple IDs. 2FA adds an extra layer of security by requiring a six-digit code for account access, preventing unauthorized password changes by malicious actors.
Steps to Enable 2FA for Your Apple ID on iPhone:
- Open the Settings app.
- Go to Sign In & Security.
- Select Turn On Two-Factor Authentication, then tap Continue.
- Enter a trusted phone number and tap Next. Complete the process by entering the code sent to your phone.
Importance of 2FA
Symantec emphasizes the value of these credentials to attackers and notes that Apple’s strong brand reputation makes users more likely to trust fake communications. The firm urges users to be vigilant against fraudulent Apple messages and activate 2FA to enhance security.
Source: https://www.cioupdate.com.tr/manset/iphone-kullanicilari-icin-apple-id-siber-saldiri-uyarisi/
