While SMS (text) phishing not new, there is a new scam that lowers people’s guard by tapping into their dependency on Apple and iPhones. A text message informs the user that an Apple ID or iCloud account will be terminated unless updated. It lures the user to click a link, which leads to a fraudulent website to collect personal data, including name and passport information. Unsuspecting Apple-addicts then hand over their personal information to the identity thieves.
Any request of this nature should be a red flag – the legitimate Apple would never collect data in this manner, so do not click on the link if you receive a text like this or respond with your personal information! According to Apple’s privacy policy, it will never ask for certain types of personal information (Social Security number, mother’s maiden name, full credit card number or credit card CCV) outside of a user’s account. When Apple does request personal information, it typically occurs within iTunes or an Apple ID account itself.
Check out our series, Privacy Perils, to learn what steps you can take to guard your personal and company data. For more information about this topic and other cyber security concerns, please contact a member of our Privacy & Data Security team.