Beware of fraud to steal your iCloud identity - NewCydiaTweaks


Post Top Ad

Post Top Ad

Thursday, September 7, 2017

Beware of fraud to steal your iCloud identity

The friends of others are always turning their heads to be able to take what is not theirs. Each time they are perfecting their technique to deceive the user, where if you are not attentive, they will end up stealing you.
This is the case for the new fashionable method, phishing unicode. Basically it tries to deceive the users with a false identity of a web , like for example
The sequence of the theft is very well studied by the criminals, first they physically steal the iPhone and then supplant the web "Search for my iPhone" . The web has all the apparent ingredients to not distrust, but you have to be attentive to a number of concepts.

Real Theft Facts of an iPhone

Lost Mode
The story that we commented on is completely real , published in the security office of the surfer. It tells us how Asun, a girl left a few seconds of his iPhone unattended, was stolen to try to supplant the identity of iCloud.
Once Asun realized that the iPhone 6s had been stolen , she used her friend's smartphone to enter the iCloud website so that she could send a message to the friends of others, informing her to get in touch with her on a specific phone number.
The Thieves used a service that sends an SMS or email to request the credentials of our Apple identity . This service basically tries to trick the iPhone owner into believing that it is on a secure Apple website using phishing.
Phishing iCloud
Its main purpose is to offer the exact location of your phone, the only requirement is to click on the link received in the email or SMS. Of course all this is false, it is simply a hook for you to stake the hook.
Once Asun clicked on the link, at first glance everything seemed correct. A web similar to that of "Search for my iPhone", with the protocol "https" and the own address of iCloud. But there were a number of details that did not fit, and this is where we should all be attentive.
If we look closely at the web, we can see how the word "iCloud" has a small dot below the "u" . Enough to confuse us if we are not attentive. This is achieved thanks to Unicode characters, instead of letters of the ASCII code.

Knowing these details, Asun acted

Because Asun could see all these details, he called the police to explain what had happened. How the iPhone 6s was still on (to expect Asun to enter his data on the fake website), the device continued to mark the exact location with "Search for my iPhone".
Perfect moment to pass this information to the Police and that these could act on the friends of others. Being able to recover the iPhone 6s stolen and with later attempt of the robbery of credentials.
If Asun had been nervous about the moment, he might have fallen into the trap of the thieves, but because he was calm and the criminals were not very clever, everything went well. Despite the fright.
Unfortunately, there are more and more websites where the identity of Apple is supplanted to try to confuse us, so it is advisable to follow these steps if we receive an email or are directed to a website of doubtful reliability.

How to protect yourself from phishing

In case of receiving an email, we can be prevented by checking this information:
• The email address you receive is not familiar to you compared to other email from Apple.
• If the message begins with a generic " Dear Customer " type greeting Normally they usually include your name thanks to its database.
• The link looks real but it directs you to a website with a URL that does not match the official Apple address .
• If they ask you for personal information , such as a credit card number or an account password, do not give them the proportions.
Here are some tips, if you receive it and match any of the above steps, report it to Apple at or if it is a received SMS.

Post Top Ad