Scammers are using SMS messages (a tactic known as smishing) to steal Apple IDs. These attacks often target mobile browsers and select regions to avoid detection.
The attack tricks recipients into believing they need to sign in to iCloud to “continue using services.” It then directs them to a spoofed website that imitates the real iCloud site. If users log in, their usernames and passwords are stolen.
Apple is aware of threats and has released advice to avoid falling victim. If you receive an unexpected message or request for personal information, err on the side of caution. Contact the company directly if needed.
Scammers often use trust and urgency to trick victims. They pose as genuine representatives, claiming you’ve won a prize or need to provide account details. Be cautious and report any suspicious messages.
Apple’s support website provides detailed information on protecting yourself from social engineering scams. Learn how to recognize and report scam attempts, whether successful or not.