Sidebar Sidebar
Become a MacRumors Supporter for $50/year with no ads, ability to filter front page stories, and private forums.

Phishing Attacks Use This Simple Trick to Defeat iPhone Message Security

MacRumors

MacRumors

macrumors bot
Original poster
Apr 12, 2001
68,539
39,382


A new social engineering tactic is being used by cybercriminals to trick iPhone users into disabling iMessage's built-in phishing protection, in a bid to expose them to malicious links and scams, according to BleepingComputer.

General-Apps-Messages-Redux.jpg

The scam exploits a security feature in iMessage that automatically disables links from unknown senders. Apple told the outlet that when users reply to these messages or add the sender to their contacts, the links become clickable – a behavior that scammers are now actively exploiting, according to the report. The deceptive messages often masquerade as notifications from trusted organizations like USPS or toll road authorities.

Scammers are apparently looking to exploit the familiar "reply STOP" or "reply NO" that often appears at the end of messages from authentic businesses or services, as there's been a surge in SMS phishing (smishing) attacks that specifically ask recipients to reply "Y" to "activate" supposedly legitimate links.

By getting users to respond, attackers not only enable the previously disabled links but also identify active phone numbers that are more likely to engage with future scams.

Tech-savvy users are likely to easily identify these as phishing attempts, but the main concern is that older or less experienced users will be particularly vulnerable to the tactic. Needless to say, the best way to ensure that you never fall for the scam is to never reply to suspicious messages from unknown senders.

phishing-scam.jpg
SMS phishing attacks with disabled links (Image credit: BleepingComputer)

Another line of defense is to enable message filtering on your iPhone or iPad. Message filtering sorts messages from people who are not in your contacts into a separate list, where you can more easily view them in the Messages app. To filter messages from unknown senders, open Settings and go to Apps ➝ Messages, then toggle on the switch next to Filter Unknown Senders.
Bear in mind that the feature can filter legitimate messages – from couriers or your bank, for example – so don't automatically assume that a filtered message is dodgy. And, as mentioned above, you can't open links in a message from an unknown sender until you add them to your contacts or reply to the message, but that's by design.

Article Link: Phishing Attacks Use This Simple Trick to Defeat iPhone Message Security
 
Article Link
https://www.macrumors.com/2025/01/13/imessage-users-targeted-phishing-scam/
Last edited:
  • Like
Reactions: SFjohn and adrianlondon
The faster we leave SMS behind the better.
I have had the same phone number for 20+ years and it must be part of an active list scammers use because at this point I receive phishing SMS's at least 2-3 times a week and regularly use TrueCaller to filter out this garbage.
 
  • Like
Reactions: Big_D, Oblivious.Robot, AppleFan1998 and 3 others
vertsix said:
Why doesn't Apple use Apple Intelligence to detect and remove these things?
Click to expand...

No idea honestly. Google Messenger does it very well. Thankfully I hardly get spam in Germany but when I do, Google flags them and hides them automatically. This would help my mother a lot. At least nowadays she sends me screen shots and asks if she needs to do something before actually doing something.
 
  • Like
Reactions: delsoul, 9081094 and Novaoblivion
jayryco said:
The faster we leave SMS behind the better.
I have had the same phone number for 20+ years and it must be part of an active list scammers use because at this point I receive phishing SMS's at least 2-3 times a week and regularly use TrueCaller to filter out this garbage.
Click to expand...
2-3 spam messages in a week doesn't sound that intrusive, actually. Some people get that many or more in a day.
 
Last edited:
  • Like
Reactions: Crowbot
jayryco said:
The faster we leave SMS behind the better.
I have had the same phone number for 20+ years and it must be part of an active list scammers use because at this point I receive phishing SMS's at least 2-3 times a week and regularly use TrueCaller to filter out this garbage.
Click to expand...

I guess I'm lucky as I get 1-2/month, and about the same amount of junk calls. Had the same number since 2001. Used to be more. That said, Apple's filter and blocking absolutely suck, and I can't silence all unknown as I get a ton of unknown numbers calls and texts for work.

How about letting me block unknown/blocked caller ID calls? Not silence, not send to voicemail, not buy them a milkshake...block..
 
  • Like
Reactions: centauratlas and 9081094
“iPhone users hate this one trick…” is the only way this article could be more clickbait. /s

Snark aside… I eliminated this spamming by removing all my personal data from data brokers. It took me an entire Saturday, but I managed to remove my email/phone/address from over 40 online sources and I haven’t gotten a single SMS spam since. Not even during the US election season.
 
  • Like
  • Haha
  • Wow
Reactions: RealE, iModFrenzy, tk421 and 6 others
vertsix said:
Why doesn't Apple use Apple Intelligence to detect and remove these things?

Genuine question, I know Apple Intelligence sucks at this time but I'm sure it can be easily trained to detect these samples?
Click to expand...
Doesn't require AI and these are the ones that get through the spam filiters. Always report spam messages as spam.
 
How about adding a "block this sender" feature. I need this for my parents. They're getting old, and we will too (hopefully). "Filtering" doesn't help because if they need to respond to anything other than their regular contacts (like Dr Appointment confirmations), they're in the filter for the next several weeks without realizing it.
Scams are scams. But how hard is it for Apple to allow blocking of a contact in Messages?
 
brett_x said:
at least you can block a phone number from calling again.
Click to expand...

I don't think I've ever got a scam call from the same number twice.

Guy here in the office with me gets 3-4 junk texts a day and it's always the exact same image (some guy in wet jeans). He's been getting them, non-stop, for almost a year. Every single time, it's from a different number and a different area code.
 
  • Like
Reactions: Chuckeee and mevans7
helmsc said:
Perhaps I'm just a "special" case, but I've had numerous scams in the past month of this nature and everyone of them has had a link already click/tap-able. No need to reply or add to contacts. :/
Click to expand...
Same here. Does anyone know where I can change this setting so the links aren’t enabled?
 
Apparently this SMS-scam is still a working business to sell 99$ pron-site subscriptions.
First question should be: Why do I need to answer that info-SMS with "Y"es?
 
McWetty said:
“iPhone users hate this one trick…” is the only way this article could be more clickbait. /s

Snark aside… I eliminated this spamming by removing all my personal data from data brokers. It took me an entire Saturday, but I managed to remove my email/phone/address from over 40 online sources and I haven’t gotten a single SMS spam since. Not even during the US election season.
Click to expand...

Hey thanks for the tip. My fear with doing that has been that the procedures they require to do that end up affirming the information they have on file. How do you know which firms will actually remove your information and not just make the situation worse?
 
MacRumors said:


A new social engineering tactic is being used by cybercriminals to trick iPhone users into disabling iMessage's built-in phishing protection, in a bid to expose them to malicious links and scams, according to BleepingComputer.

General-Apps-Messages.jpg

The scam exploits a security feature in iMessage that automatically disables links from unknown senders. Apple told the outlet that when users reply to these messages or add the sender to their contacts, the links become clickable – a behavior that scammers are now actively exploiting, according to the report. The deceptive messages often masquerade as notifications from trusted organizations like USPS or toll road authorities.

Scammers are apparently looking to exploit the familiar "reply STOP" or "reply NO" that often appears at the end of messages from authentic businesses or services, as there's been a surge in SMS phishing (smishing) attacks that specifically ask recipients to reply "Y" to "activate" supposedly legitimate links.

By getting users to respond, attackers not only enable the previously disabled links but also identify active phone numbers that are more likely to engage with future scams.

Tech-savvy users are likely to easily identify these as phishing attempts, but the main concern is that older or less experienced users will be particularly vulnerable to the tactic. Needless to say, the best way to ensure that you never fall for the scam is to never reply to suspicious messages from unknown senders.

phishing-scam.jpg

SMS phishing attacks with disabled links (Image credit: BleepingComputer)

Another line of defense is to enable message filtering on your iPhone or iPad. Message filtering sorts messages from people who are not in your contacts into a separate list, where you can more easily view them in the Messages app. To filter messages from unknown senders, open Settings and go to Apps ➝ Messages, then toggle on the switch next to Filter Unknown Senders.
Bear in mind that the feature can filter legitimate messages – from couriers or your bank, for example – so don't automatically assume that a filtered message is dodgy. And, as mentioned above, you can't open links in a message from an unknown sender until you add them to your contacts or reply to the message, but that's by design.

Article Link: Phishing Attacks Use This Simple Trick to Defeat iPhone Message Security
Click to expand...
It is 100% Apple's responsibility to filter and block these scams.
 
  • Disagree
  • Haha
Reactions: iGüey and jib2
sportpepper said:
How? This sounds worthwhile.
Click to expand...
There are manual ways to do it, but this place (supposedly) does it for you: https://incogni.com/

I haven't tried it, but I know someone who did and he said it helped. I'm sure there are similar ones too, this just happened to be the one I had heard about. It is too bad Apple Intelligence (or ChatGPT) can't do this, then it would be worthwhile. :)
 
Tech-savvy users are likely to easily identify these as phishing attempts, but the main concern is that older or less experienced users will be particularly vulnerable to the tactic
Click to expand...

This is the problem.

People who read MacRumors are not the target audience for this attack. After all, they have an increased interest in computer technology, especially Apple devices. So they already have too much knowledge to be able to understand what is going on.

Imagine a person who uses the iPhone, wants to install an app, and is deterred because the device requires pressing the power button for FaceID.
“Huh, why can't I proceed? Wait... oh, up there... Why do I have to press twice now? Ok, I'll do it... Ah, now it's installing the app.”

No, this is not a polemic. It's the average user. The one no one here in the forum will see. And that's the target group of this and similar attacks.
 
  • Like
Reactions: Big_D, Ericdjensen and jimbobb24
You must log in or register to reply here.
Register on MacRumors! This sidebar will go away, and you'll see fewer ads.
Top Bottom
Back