With multiple layers of privacy and encryption, iPhones are sold as highly secure devices by their manufacturer. It still happens that some thieves exploit human loopholes to successfully unlock a stolen mobile from its owner, as reported by a recent investigation byIndia Today signed Ankita Chakravarti. To do this, criminals have a well-established strategy.
This consists in sending a Fraudulent SMS to their victim, with a link containing the words “icloud” and “findmy”So as to make it more legitimate in the eyes of the most gullible. The message then indicates that it is possible to find the geolocation of the phone by accessing the page, where the target’s Apple identifiers are then requested. Vedant, a resident of New Delhi, then fell into the trap and entered his email and password. It didn’t take much for the thieves to unleash their loot and its former owner’s account so they could reset it, probably with a view to reselling it.
A well-established strategy …
As we can see in the screenshot above, the text message received by Vedant may indeed appear to come from Apple if not read in full. But if you take a closer look, you can see that the extension is in .pm and that findmy absolutely does not correspond to official domain name used by the Find My app. The fact that the content was sent from a number also used by Microsoft for its two-factor authentication process shouldn’t have helped either.
It is impossible to know how the thieves actually went about it here, but it is likely that they went through one of the many companies that offer to rent special numbers to avoid receiving replies to automatic text messages. Then, the blue iPhone 12 in question has probably found a buyer on the black market.
How to protect yourself?
As Apple points out, the brand will never ask you for your credentials outside of its own platforms. It is therefore essential to check that, if you receive this kind of message, the link it contains does not redirect to a phishing attempt. To do this, just check the link extension. At Apple, we mainly find .com, notably with iCloud and the various showcase sites of the firm.