In a recent memo, Apple warns about a variety of attacks that are affecting more and more customers. The support document aims to help detect and avoid “social engineering schemes such as phishing messages, fake support calls, and other scams.” The company writes. In addition to detection options, it also explains how you can report scam attempts to Apple so they can be blocked for other customers.
Advertisement
How attackers impersonate Apple
Scams and spoofing attempts, in which attackers pretend to be Apple employees, have become common lately. Well-known Apple numbers are also used. The company recommends calling back if necessary to check that the number is indeed correct. It also warns that attackers can obtain private data obtained from hacks, exert pressure, request additional account information such as security codes and also try to thwart iPhone security features such as stolen device protection.
Apple provides additional tips on how to identify fraudulent emails and text messages and what to do if your browser behaves strangely. Phishing attempts should be reported to reportphishing@apple.com, FaceTime scam attempts should be reported to facetimefraud@apple.com – preferably with screenshots and/or more details. iCloud attacks should be reported to abuse@icloud.com.
Torus Ostand in the test: Wireless iPhone power bank with MagSafe and standMFA can still be bypassed via phone number
No matter how hard Apple tries to educate customers who are not familiar with security matters, the company has had a gap in securing its Apple ID for years, which security experts have repeatedly warned about. The fact is that it is still absolutely necessary to provide a telephone number that can be used to reset an account. It can also be used as an alternative way to log in instead of Apple’s in-house multi-factor authentication (MFA) system.
The problem is that so-called SIM swapping attacks still occur, in which crooks steal users’ phone numbers. With regard to the spread of eSIMs, the situation has actually gotten even worse since there is no longer even a need to wait for a card to be sent. While other companies have completely decoupled their MFA systems from telephone numbers, Apple still relies on it – perhaps even for the convenience of its customers.
(B.Sc.)
Finally available to try: iOS 18 beta 3 for developers offers RCS support
