Sign up to our newsletter
Apple customers are prime targets for cyberattacks as they are more likely to have a high disposable income, a security expert has suggested.
WeLiveSecurity contributor Graham Cluley has warned owners of Apple devices to be on their guard after spotting a fresh SMS phishing scam designed to compromise Apple ID credentials.
The scam in question came in the form of text messages from “Appleinc” warning recipients that their Apple IDs were about to expire.
Victims are urged to click links to hold on to their IDs, which direct them to a replica version of the Apple website where they’re asked to hand over their credentials.
After harvesting Apple ID usernames and passwords, the website then asks victims to provide further personal information to “unlock” their accounts – including their telephone numbers, address and credit card details.
“They deliberately took advantage of people’s trust in the Apple brand to steal information,” Mr. Cluley told the BBC.
“The truth is that criminals will go where the money is. Apple products cost more than some of their competitors so it’s likely that their customers have more disposable income.
“That’s cash, which the bad guys would like to have filling their pockets,” he added.
Apple’s support website warns customers never to enter their Apple ID information on a non-Apple website.
However, with a convincing replica site, it can be difficult to spot the difference.
As well as the name of the text message sender “Appleinc”, the International Business Times noted that the URL victims were directed to – “isappleexpired.co.uk” – was another giveaway in this instance.
The phony website has since been blocked by web browsers including Chrome and Firefox.
Meanwhile, Mr. Cluley had advised Apple customers to be extra cautious of the links they click on via email and text message, suggesting two-factor authentication as an extra measure to back up Apple IDs.
Author Narinder Purba, We Live Security