July 2024
As recently reported by national news outlets, there is a new cyberattack targeting iPhone users through a text message (SMS) and email phishing campaign, that tricks them into revealing their Apple ID credentials. The attack uses fake messages claiming to be from Apple and directs users to a fraudulent iCloud login page in an attempt to steal their username and password information.
If you suspect a message to be a phishing attempt, you can quickly report it using Outlook's "Report Phish" feature. If you are not using Outlook, or if you cannot determine if an email is legitimate or not, please forward the email to phish@miami.edu to notify the IT Security team.
Cybercriminals send fake text and email messages pretending to be from Apple. These messages urge you to click a link for an iCloud update or verification. The link directs you to a fake website designed to steal your Apple ID and password.
After clicking the link, you're taken to a fake iCloud login page and asked to enter your credentials. This gives cybercriminals access to your personal and financial information, as well as control over your devices.
Below are samples of this type of scam. (Note the strange email return address originating from a non-Apple account.)
If you ever fall victim for this type of scam, you can still take steps to protect yourself:
If you receive a suspicious looking email, click on Outlook's "Report Phish" button while the email is open. With a simple click, the suspicious email will be forwarded to the IT Security team for review, enabling them to respond quickly to threats. If you are not using Outlook, or if you cannot determine if an email is legitimate or not, please forward the email to phish@miami.edu to notify the IT Security team.
If you are ever a victim of phishing, e.g., you clicked a link, provided login information via a fraudulent site, and/or downloaded an attachment from a suspicious source, please contact the IT Security team at infosec@miami.edu.
Copyright: 2024 University of Miami. All Rights Reserved.
Emergency Information
Privacy Statement & Legal Notices
Individuals with disabilities who experience any technology-based barriers accessing the University’s websites or services can visit the Office of Workplace Equity and Inclusion.