Apple has published new guidelines for all iPhone users to protect themselves after a cyberattack last week targeted more than a billion devices.
The company warned users that hackers are using social engineering tactics, posing as company representatives to gain access to personal data, such as login credentials, security codes and financial information.
Be wary of phishing emails that trick users into sharing data or paying money, as well as fraudulent pop-up ads, fake offers, unwanted calendar invites, and prank phone calls.
As a first step, iPhone owners, if they haven’t already enabled it, should set up two-factor authentication, which requires a password and a six-digit verification code to access their account from a remote device.
Apple warned users that hackers are using social engineering tactics, such as posing as company representatives, to gain access to personal data, such as login credentials, security codes and financial information.
Apple advises users to be cautious about receiving fake calls from what appears to be a legitimate phone number, but is actually from a malicious person trying to steal your information.
They may try to build a relationship with you to gain your trust by providing personal information about your account, such as your home address, workplace, or even your social security number.
This scammer will likely claim that there is a problem with the account and that someone has made unauthorized payments through Apple Pay. They will also present it in a way that makes it seem urgent, so that the user feels pressured to resolve the situation immediately.
“Spoofong phone calls typically create a strong sense of urgency that doesn’t give you time to think and prevents you from contacting Apple directly,” Apple warned.
“For example, the scammer may say that you are welcome to call Apple back, but the fraudulent activity will continue and you will be liable. This is false and is intended to prevent you from hanging up.”
Apple noted on its support page that scammers may also ask iPhone users to disable features like two-factor authentication or Device Theft Protection.
“They will claim that this is necessary to stop an attack or to give you back control of your account,” the tech giant said.
“But they’re trying to trick you into lowering your security so they can launch an attack themselves.”
According to the company, there are ways to identify fraudulent emails and messages so you aren’t tricked and your personal information isn’t exposed.
Users should first look at the sender’s email address or phone number to see if it matches the company name and if the email address they used to contact you is different from the email address on your account.
Other methods include checking to see if the URL link they send matches Apple’s website, if the message looks different from other messages you’ve received from the company, and if it asks for personal information like your account password or credit card number.
Scammers will likely claim that there is a problem with the account and that someone has made unauthorized charges using Apple Pay and will make it seem urgent so that the user feels pressured to resolve the situation immediately. This will create a situation where the malicious actor gains access to important personal and financial information
If a user receives a suspicious call, they should hang up immediately and call Apple directly to verify the notification they received. The user can also report fraudulent calls to the U.S. Federal Trade Commission or local law enforcement authorities.
Apple’s warning comes just a week after scammers used SMS phishing campaigns that sent iPhone users fake messages asking them to click on a link to an “important request” about iCloud.
California security firm Symantec discovered the attack this month and warned that the links lead to fake websites urging users to provide their Apple ID details.
The company issued the alert on July 2, saying it had detected a malicious text message that read: “Apple Important iCloud Request: Visit signin(.)authen-connexion(.)info/icloud to continue using your services.”
Symantec reported that the hackers added a CAPTCHA to the fake website to make it look legitimate and that once the CAPTCHA was completed, users were taken to an outdated iCloud login template.
“Phishing actors continue to target Apple IDs due to their widespread use, which provides access to a large pool of potential victims,” Symantec said in an alert last week.
“These credentials are extremely valuable. They provide control over devices, access to personal and financial information, and potential revenue through unauthorized purchases.”
Apple has clarified that its support agents will never direct users to a website link to log in or ask them to enter their device password or two-factor authentication code.
“If someone claiming to be from Apple asks you for any of the above, they are a scammer engaged in a social engineering attack. Hang up the call or otherwise end contact with them,” Apple said.