Symantec Discovers New Round of Phishing Attacks Against AppleID Affecting Billions of iPhone Users

TapTechNews July 6th news, Symantec released a blog post on July 2nd, indicating that it has discovered a new round of phishing attacks targeting Apple's AppleID, threatening the 1.46 billion iPhone users worldwide.

Symantec stated in the blog post that the attackers forged emails and messages released by Apple, using phishing activities to trick users into clicking links (such as reading important notifications about iCloud, etc.) to steal users' sensitive information.

The blog post pointed out that most of the phishing activities are sent by email, but the malicious SMS method is also increasing. Users may receive the following SMS content, and TapTechNews translation is as follows:

Important request from Apple for iCloud: Please visit signin[.]authen-connexion[.]info/icloud to continue using your service.

After the user clicks this link, it will jump to a高仿 iCloud page, and after logging in, it will enter an outdated iCloud login template.

Apple suggests that iPhone users add Two-Factor Authentication (2FA) to add an extra layer of security protection for their AppleID. To access the Apple account using 2FA, the user will receive a text message with a special one-time six-digit code that must be entered to access the Apple account.