iPhone Users Targeted with a New Scam on the Block: Here's All You Need to Know About the Apple Messages Scam

Iphone Messages Scam
By Simran Sukhnani | Updated Jan 15, 2025, 11:26 AM IST
Share

In the latest fraud news, threat actors are exploiting iMessage on iOS devices to send deceptive messages, tricking users into clicking malicious links under the pretense of avoiding returned courier deliveries. This Apple scam is making headlines in tech news today, raising concerns for iPhone users.

India Post Phishing Scam Targets iPhone Users: What You Need to Know



Cybercriminals are targeting iPhone users in India with a phishing campaign disguised as official India Post communications. The scam, identified by FortiGuard Labs, tricks victims into sharing sensitive personal and financial information under the pretense of delivering a package. This large-scale operation is linked to the China-based threat group Smishing Triad, which has conducted similar attacks worldwide.


How the Scam Operates


The attack begins with fraudulent iMessages sent to Apple ID accounts, claiming that a package is awaiting delivery at an India Post warehouse. Victims are directed to a fake India Post website where they are asked to provide personal details and credit card information for a supposed redelivery fee.

Investigations reveal that over 470 phishing domains impersonating India Post have been registered since January 2024, with nearly 300 of these domains tied to a Chinese registrar. The scam uses these fake domains to mirror the real India Post website, making it harder for users to differentiate between authentic and fraudulent communications.

This campaign, part of a growing trend in "smishing" attacks, highlights the scammers' focus on exploiting trusted brands like India Post to deceive users. The attackers also use urgency tactics, such as claiming victims must act within 24 hours, to lower vigilance and prompt hasty actions.


Protecting Yourself Against Smishing


iPhone users are advised to remain cautious when receiving unexpected messages or notifications, especially those requesting personal or financial information. To safeguard yourself:

  • Avoid clicking on links in suspicious messages, even if they seem urgent or authentic.
  • Manually visit official websites by typing the URL instead of using shared links.
  • Enable multi-factor authentication on your Apple ID and other accounts to add an extra layer of security.
  • Regularly update your devices and security software to defend against vulnerabilities.
  • If you suspect a message is fraudulent, report it to the appropriate authorities and delete it immediately.
By staying vigilant and following these practices, users can significantly reduce the risk of falling victim to such phishing scams.


Related Articles

iPhone Users Targeted with a New Scam on the Block: Here's All You Need to Know About the Apple Messages Scam
Apple Watch SE 3 Rumored to Launch This Year with a "New Look"