Apple Account Scams: The Hackers Have Gone Phishing

Q: What security measures are in place for lost or stolen Apple devices?

Apple provides a feature called Find My which allows users to locate, lock, or remotely erase a lost or stolen device. Activation Lock is automatically enabled when Find My is turned on, preventing anyone else from using or resetting the device without the owner's Apple ID and password.

There are more than 2 billion Apple devices in use around the world. All those devices require an Apple ID to use the App Store, FaceTime, iCloud, iMessage, Apple Music and many other services. Even if you don’t have an Apple device, chances are you have an Apple ID to access certain Apple services. As a result, the number of Apple ID accounts that hackers can target is vast. Apple IDs are valuable to hackers because they contain volumes of personal data, including names, addresses, billing and shipping addresses, bank and credit card accounts, payment information, security settings and more. Adequate device security has never been more critical to protecting your small or midsized business’s data.

Q: How does Apple protect users from phishing and malicious content?

A: Apple uses various system-level protections to safeguard users. Safari, for instance, includes features like Intelligent Tracking Prevention and warns users when they’re about to visit a suspicious website. Apple Mail blocks tracking pixels and masks IP addresses. With iOS 15 and later, features like Mail Privacy Protection and App Privacy Reports give users better insight into how apps use their data.

What is an Apple Phishing Email?

Phishing emails are the most popular method used by hackers to steal Apple IDs, and they can have devastating consequences for their small and midsized business targets. The FBI called business email compromise “one of the most financially damaging online crimes.” Cybercriminals design an Apple ID scam email to look like an official communication from Apple Inc. Here are some typical types of fake Apple emails:

Notifications That “Your Apple ID Account Has Been Locked” – These emails are from Apple imposters and may include a link to click on to re-enter your Apple ID and password or ask you for confidential information to reconfirm your account
“A Receipt” for an Apple ID Order – This email is designed to make you think that somebody other than you has been using your account, and your credit card has been charged. A supposed “receipt” is attached. When you click on it to see what it’s for, you are redirected to a page asking you to confirm some confidential information, such as credit card or Social Security numbers. Or you may be redirected to websites that will steal your data by automatically downloading and installing malicious software that spreads throughout your system and network
“Notice to Restore Your Account” – This phishing email urges you to click on the attachment to restore your account. Instead, clicking installs malicious software on your system that steals your data and infects the rest of your network

Q: How does Apple protect user data on its devices?

A: Every Apple device includes a dedicated Secure Enclave chip that encrypts sensitive information like Face ID, Touch ID data and passwords. In addition, Apple uses on-device encryption to protect data stored on the device, ensuring that only the user can access their information—even Apple cannot decrypt it. Features like FileVault on macOS and Data Protection on iOS further enhance this by encrypting data at rest.

How Can You Spot Fake Apple Emails?

There is no sure-fire way to avoid phishing, but it is worth your while to be extra cautious. When in doubt, don’t click on or open anything attached to an email or text. Take your time. Cybercriminals continue to make the fakes more convincing than ever. Hover over a link to reveal its source and review the email address before clicking. Apple.com will not send you an email from another domain. Some of the warning signs of fake Apple emails include:

Graphics and Layout Irregularities – If something doesn’t look right, it’s probably not. Apple would not send out anything that didn’t match its official design or style guide
Spelling and Grammatical errors – Apple is unlikely to have mistakes in its copy. Misspellings and grammatical mistakes can indicate the email was composed by an imposter
Suspicious “Sender” – If anything seems odd about the email address from the sender, look at it more closely. At first glance, it might look okay, but one character will be different in the address. Other times, if you dig deeper, you may find the email address is entirely unrecognizable and could not possibly have come from Apple
Suspicious Attachments or URLs Embedded in Emails or Texts – If you don’t feel the attachment is legitimate, don’t open it. It’s better to take the time to verify authenticity than risk opening the door to a cyberattack
Requests for Personal information – This is an easy one to catch. Apple Inc. will never ask for your personal information in an email or text. If you receive such an email, delete it without a reply

While awareness and vigilance help reduce the chances of a breach, you can get a fuller picture of your network and device vulnerabilities by hiring a cyber security company to complete a risk assessment.

Q: What security measures are in place for lost or stolen Apple devices?

A: Apple provides a feature called Find My, which allows users to locate, lock or remotely erase a lost or stolen device. Activation Lock is automatically enabled when Find My is turned on, preventing anyone else from using or resetting the device without the owner's Apple ID and password.

What’s the Best Way to Avoid Getting Hacked?

Apple devices are not alone in these risks. Statistics suggest that it is merely a matter of time before a small or midsized business is hit by cybercrime. All of your network-connected devices pose a risk. Apple has made networking easy, but with convenience comes increased vulnerability. As your business adds more devices, your network’s surface attack area grows, too.

Cyber security firms specialize in proactive cyber threat protection and have an array of solutions for small and midsized businesses. They help ensure your confidential data has the best protection possible, and they can train your employees in cyber security best practices. Many companies, bound by strict compliance and privacy laws (law firms, medical practices and financial services) cannot risk data breaches and must apply additional data protection measures.

Cyberattacks can have devastating consequences for any business. They are disruptive, costly and professionally embarrassing. They can create ongoing liability problems. If you are in the greater New York City area, please reach out. Otherwise, contact a local cyber security company specializing in SMBs and affordable managed network and data protection solutions.