A widespread phishing campaign is sending alarmist iCloud 'storage full' texts and emails to millions of iPhone users to harvest Apple ID credentials and payment details; some links can also install malware.
A widespread phishing campaign is targeting millions of iPhone users with alarming messages that claim their iCloud storage is full, security observers report. The alerts are engineered to provoke worry about imminent data loss from the cloud and use emotional pressure and urgent language to push recipients into hasty action, prompting warnings from consumer and security outlets about the scam's broad reach.
The messages typically arrive by text or email disguised as an official Apple notification, often using subject lines such as "We’ve blocked your account!" or "Your payment method has expired!" They include buttons labeled "update" payment details or "manage" storage; those links send victims to convincing look‑alike websites designed to harvest Apple ID passwords and credit‑card information.
Apple warns these are social‑engineering attacks that "use impersonation and manipulation to first gain your confidence and trust," then trick victims into handing over sensitive data or account access. Scammers commonly deploy authentic‑looking Apple branding and set urgent deadlines — sometimes threatening that photos or videos will be deleted by a specific date-to heighten pressure. Some malicious links can also trigger malware downloads onto devices.
Security experts and consumer advocates urge caution with unsolicited account alerts. Successful compromises can lead to stolen credentials, financial fraud, account takeover, or device compromise. Anyone who receives an unexpected iCloud notice should avoid clicking embedded links and instead verify the account status through their device settings or the official account site before taking any action.
Sources
Replies (0)
No replies in this topic yet.
