Cybersecurity experts are warning of a new online scam targeting iPhone users worldwide.
The scam aims to steal banking data and personal information through fake emails that appear to be from Apple and iCloud.
This process involves sending messages claiming that users’ iCloud storage space is full, urging them to upgrade their accounts urgently to avoid losing photos and videos and the disruption of backup services and applications associated with the service.
The messages include a link or button urging users to upgrade, but press reports, including The Guardian, indicate that this link leads users to malicious websites designed to steal sensitive data, including banking information.
If users enter their data or make payments, fraudsters can exploit this information to steal money or sell it on the black market online.
Reports also indicate that some of these messages take on a more threatening tone, warning the user that their iCloud account will be closed within 48 hours if immediate action is not taken.
The British consumer protection organization Which? said that this fraudulent campaign is widespread, calling on Apple device users to be careful and not to interact with suspicious messages or untrusted links.
Other emails impersonating iCloud have also been reported, claiming that all photos and data will be deleted if there is no response, increasing the psychological pressure on victims to push them to react quickly.
The US Federal Trade Commission issued a warning about these methods, stressing the need to contact Apple directly through its official channels when receiving any suspicious message, and not to click on attached links.
In a related context, experiences of victims published on the Reddit platform showed that they received repeated messages titled "Your iCloud storage is full," which included lengthy texts explaining that data was no longer being saved and that photos and videos were not being uploaded to the service.
These messages bear a fake signature in the name of the "iCloud team" in an attempt to lend them credibility, and they use email addresses that look close to official but are in fact fake.
It is noted that some of the fraudulent messages come from suspicious email addresses such as noreply@email.apple.com, while sources confirm that Apple's official addresses are different from them.
The Guardian also received a message from one of the victims containing a direct threat to delete the data if there was no response within a specified period, reflecting an escalation in the blackmail tactics.
In other scams, ConsumerAffairs revealed fake text messages claiming there was a problem with Apple Pay accounts or rejected purchases, and asking users to call phone numbers or take urgent action.
If the victims respond, the scammers impersonate Apple support staff, bank representatives, or government officials, and use stolen personal information to persuade them to transfer or send money via various means such as gift cards or Apple Pay.
ConsumerAffairs confirmed that there are clear warning signs of these operations, most notably unexpected messages, requests to contact unofficial numbers, pressure to make quick decisions, and requests for passwords or security codes.
