Summary: Cybercriminals are exploiting a vulnerability in Apple iMessage’s phishing protection by tricking users into replying to smishing messages, which re-enables links that were initially disabled. This tactic poses a significant threat as it targets users who may not recognize phishing attempts, particularly older individuals.
Threat Actor: Cybercriminals | cybercriminals
Victim: Mobile users | mobile users
Key Point :
- Attackers send smishing texts that appear legitimate, prompting users to reply to enable links.
- Once a user replies, iMessage’s built-in phishing protection is disabled, making them vulnerable.
- This tactic has seen a surge in use, particularly targeting individuals who may not recognize phishing attempts.
- Users are advised to avoid replying to suspicious messages and to verify with the organization directly.