A fresh Apple scam has resurfaced, preying on individuals with concerns about dwindling iCloud storage space. iCloud, Apple’s cloud storage service, plays a crucial role for many iPhone users by acting as a digital backup, safeguarding photos, documents, and essential files from accidental loss or deletion.
The convenience of iCloud lies in its ability to seamlessly sync data across devices like iPhones, iPads, and Macs, storing everything in one centralized location. However, a major drawback is the limited storage capacity unless users opt for additional paid space. The scammers are exploiting these limitations once more.
According to cybersecurity experts at Malwarebytes, there has been a surge in fraudulent emails alleging that users have exceeded their iCloud storage limits. These deceptive messages, posing as Apple notifications, claim that files are no longer being backed up due to exceeded storage. Recipients are then prompted to upgrade their storage plan through a link leading to a counterfeit website designed to steal sensitive information.
Malwarebytes cautioned that the scam emails aim to capitalize on the emotional appeal of preserving personal photos to trick users into disclosing personal and financial details. The fraudulent websites linked in these emails seek personal and payment information under the guise of preventing iCloud files from being deleted.
To enhance user safety, new guidelines have been issued, emphasizing that Apple does not send unsolicited emails regarding iCloud storage issues. Legitimate alerts from Apple about nearing storage capacity will appear within device settings or as official system notifications, not in unsolicited texts or emails with external links. To check storage status, users are advised to go directly to device settings and review iCloud usage.
Additionally, five safety rules have been outlined for iCloud users:
1. Only access your account through Apple’s official website or device settings.
2. Never share your password with anyone.
3. Verify links in unexpected emails or messages before clicking.
4. Use updated anti-malware software with web protection enabled.
5. Refrain from engaging with suspicious websites or payment requests.