New iPhone warning – How to avoid a sneaky SMS attack

A security company has issued a new iPhone alert after discovering that Apple IDs are the target of an SMS phishing campaign.

Researchers at Symantec describe how attackers distribute malicious SMS messages to iPhone users in the US.

The SMS sent to iPhone readers states: “Important request from Apple, iCloud: Visit signin(.)authen-connexion(.)info/icloud to continue using your services.”

To make the iPhone SMS appear authentic, the attackers have even included a CAPTCHA that users must complete. Users are then redirected to a web page that resembles an outdated iCloud login template and are asked to give the attackers their information.

According to Broadcom, owner of Symantec, Apple ID credentials are “very valuable” because they give attackers control over iPads and iPhones, access to personal and financial information, and potential revenue from unauthorized purchases.

ForbesiOS 17.5.1 – Emergency fix for all iPhone usersFrom Kate O’Flaherty

In addition, the reputation of the Apple brand makes users more susceptible to trusting misleading messages that appear to come from Apple, the company warned.

Typically, Apple ID phishing occurs via email—and many of them you may never see because they end up in your junk folder. However, SMS phishing—also called “smishing”—is becoming increasingly common.

Typically, smishing attackers restrict access to their malicious websites to users with mobile browsers and specific regions to evade detection by surveillance systems, but in this case, the malicious website is accessible from both desktop and mobile browsers, according to Broadcom researchers.

How to avoid new SMS attacks on the iPhone

This comes as attackers increasingly target iPhones and Apple IDs. In March, I reported on an attack that bombards iPhone users with multi-factor authentication notifications or messages to get them to reset their password.

Forbes Contributor Davey Winder was himself affected by an Apple ID password reset bug that affected iPhone, iPad, and Mac users.

Attackers sending SMS to the Apple iPhone are becoming increasingly sophisticated, using “fear-inducing language” such as “Act Now” and “Important,” says Jake Moore, global cybersecurity advisor at ESET. “This can often compel people to take more successful actions, so users need to be careful of any link embedded in a text message, especially from undesirable locations.”

It’s also important to be aware that in addition to your Apple ID – which Moore says is usually the owner’s primary email address – crafty cybercriminals can also have your cell phone number. “This can add an air of authenticity and make the attack much more personal.”

ForbesApple’s new AI security move explainedFrom Kate O’Flaherty

So what can you do to avoid this sneaky new iPhone attack? First, be very cautious of any message you receive that suggests it’s from Apple. Enabling multi-factor authentication for accounts – which requires Face ID or Touch ID – can also help.

If you receive a text message asking you to sign in to iCloud, you should check the source. A random phone number is probably not associated with Apple.

With that in mind, you should only access iCloud login pages from trusted sources and locations, Moore advises.

If you receive a text message – even if you are sure it is from Apple – you can log into your account separately using the official URL or through your iPhone settings. Never click on a link in a text message unless you are absolutely sure you know who it is from.