new phishing text targeting iPhones

ay98182b

macrumors newbie
Original poster
Apr 4, 2016
5
0
Received the attached text last night - almost got me to believe it was real (and I'm vigilant about these things). It comes up as being from 'Apple' and was addressed to my full name. My friend received one too, so it must have been a widespread thing. He went as far as giving his initial log in and address details before realising something was wrong - luckily he hadn't yet filled out the card details they ask for (he's since changed his Apple ID password - do you think he should cancel his cards as well? He didn't put in any financial information).

According to my friend, the link on that text redirects to a perfect emulation of the Apple ID page (and the link address is a plausible one too). Probably the most realistic one of these I've seen.

What's the best way to report this to Apple?


FullSizeRender.png
 

bruinsrme

macrumors 604
Oct 26, 2008
6,596
2,350
At first I thought it was a pain but after setting it up and using it it's barely a bother now.
I set it up because for some crazy reason I am getting other people's support cases in my iCloud email.
 

ftaok

macrumors 603
Jan 23, 2002
6,201
1,221
East Coast
You'd think that Apple would use iMessage to send you stuff. Not that convincing.

EDIT - also, the lack of https is another giveaway. It's really getting bad these days with all of the phishing and stuff. The scary thing is when your company's HR/payroll department gets suckered by a phishing scheme and releases everyone's SSN, payrate, addresses, etc.
 

ftaok

macrumors 603
Jan 23, 2002
6,201
1,221
East Coast
Most people think Apple protects their privacy and don't expect strangers to be able to get their full name and ph# from Apple.
Absolutely. But I'm guessing these scammers are getting the names/numbers from services that scan social media networks. These services probably know if you have an iPhone or Android as well.

Then it's child's play to set up a fake website. Send out a bunch of text messages. Wait. Profit.

Most tech savvier folks won't fall for this. But that's only like 5% of the population. All they need to do is have a few people fall for it and WHAMMO!

It really is scary how far this stuff reaches.
 

ZombiePete

macrumors 68020
Aug 6, 2008
2,251
973
San Antonio, TX
(and the link address is a plausible one too)
Not really; Apple is not going to direct you to a non-Apple.com site.

EDIT: I went there and put in an obscenely fake ID; it told me that the ID had been locked for security reasons and that I needed to through a process to unlock it. I imagine that it's some more phishing stuff; probably looking for answers to security questions and stuff. It's not a bad looking site, but obvious phishing is obvious.
 

lparsons21

macrumors 6502
Jun 3, 2014
447
207
Southern Illinois
The simple solution is to follow the old rule about email links -- Don't click the link in email!! I've followed this rule for years and it works each and every time. If it is legit then you can go to the account and find that out.
 
  • Like
Reactions: ZombiePete

macfacts

macrumors 68040
Oct 7, 2012
3,767
4,467
Cybertron
Absolutely. But I'm guessing these scammers are getting the names/numbers from services that scan social media networks. These services probably know if you have an iPhone or Android as well.

Then it's child's play to set up a fake website. Send out a bunch of text messages. Wait. Profit.

Most tech savvier folks won't fall for this. But that's only like 5% of the population. All they need to do is have a few people fall for it and WHAMMO!

It really is scary how far this stuff reaches.
I don't think any social media sites displays users pH #s
 

JohnApples

macrumors 68000
Mar 7, 2014
1,505
2,354
Really? Would you think that icloudreallyreallysecureipromise!login.com is also plausible? That link is laughable.
You're looking at this from a tech-savvy user perspective. Of course it's obviously fake to us. Think about the users who don't know how to do much besides text, call, and check their Facebook. I could EASILY see my mother and grandparents falling for this had I not warned them.
 

ZombiePete

macrumors 68020
Aug 6, 2008
2,251
973
San Antonio, TX
You're looking at this from a tech-savvy user perspective. Of course it's obviously fake to us. Think about the users who don't know how to do much besides text, call, and check their Facebook. I could EASILY see my mother and grandparents falling for this had I not warned them.
Make sure they have 2FA turned on.
 

ZombiePete

macrumors 68020
Aug 6, 2008
2,251
973
San Antonio, TX
It is plausible though looking at it in terms of the general public who might not know....
"Plausible" and "Good enough to fool the unwitting" aren't intrinsically the same thing. It's not even close to a plausible website, but yes it probably would fool someone who didn't know better.
 

ay98182b

macrumors newbie
Original poster
Apr 4, 2016
5
0
You're looking at this from a tech-savvy user perspective. Of course it's obviously fake to us. Think about the users who don't know how to do much besides text, call, and check their Facebook. I could EASILY see my mother and grandparents falling for this had I not warned them.
Exactly - I'm not saying any of us would fall for it (most on this forum are not representative of the general user I would argue), but my friend is no idiot by any means, he's just not tech savvy. He was in a hurry and tired and almost gave them everything they needed to rip his credit card off.

Not to mention, as you say, my parents etc, who could easily be fooled by this. Perhaps 'plausible' is indeed the wrong word - the link (and site, just had a look at it myself) is convincing enough to the lay person (of course it's easy to just replicate a site like that, I'm not saying the scammers are rocket scientists). Plenty of people must have been duped by it, sadly. It's certainly not laughable, like some of the scams I've seen, particularly given it's sent to your full name. I'm often surprised by how poorly written/done phishing scams they are. And people must fall for those too.

Oh and social media wouldn't display my mobile number for them to connect it to my name, so I still wonder how they got that information? I'm sure it's not that difficult to dig stuff like that up, but still.
[doublepost=1459786818][/doublepost]On a related note, this was a similar scam.

"In a strange twist, the criminals who created this scam have attempted to thwart scam investigators. If you enter false data that includes words such as ‘scam’ into fields on the fake form, your browser will automatically redirect you to a preconfigured Google search for sickening and illegal pornography."

The devious bastards.
 

mrex

macrumors 68040
Jul 16, 2014
3,321
1,394
europe
Not really; Apple is not going to direct you to a non-Apple.com site.
how about icloud.com?

unfortunately it is enought for most of the victims that there is word icloud or apple in the address bar. if it says apple.bull ****.com they will click it because there was apple. in the beginning.

and a site called icloudsecurelogin is pretty clever to confuse even people who think they are clever than scammers.
 

DMoggo

macrumors regular
Sep 27, 2013
212
20
UK
I'm amazed at how many companies etc seem to gain our details even though when you ask them they say they don't 'share' information!
 
Register on MacRumors! This sidebar will go away, and you'll see fewer ads.