Internet silly buggers are after your shit again, folks. This time, they’re using a fake Apple ID login window that are almost identical to the real deal, tricking tons of people into giving up their details.
This week, iOS code nerd Felix Krause demonstrated how easy it is to actually create one of these fraudulent login forms, pointing out that it takes less than 30 lines of code even novice developers could pull off.
“Users are trained to just enter their Apple ID password whenever iOS prompts you to do so,” Krause wrote in a blog post. Look at this shit and tell me you can find the difference between the two.
Yeah, not easy. The one on the left is legit, the right is fake as shit. Allegedly, the popups have been appearing not only inside random apps, but on the iPhone home screen as well. “Even users who know a lot about technology have a hard time detecting that those alerts are phishing attacks,” he continued.
“Showing a dialog that looks just like a system popup is super easy, there is no magic or secret code involved, it is literally the examples provided in the Apple docs, with a custom text.”
Krause reckons one way to tell if the login request is fake is to press the home button. If the app closes along with the dialogue box, that’s a phishing attack my good dude. He also says a good way of avoiding them altogether is to just enter your Apple ID details in Settings instead.
Stay safe on-the-line, legends.
