ECONOMY & WORK
MONEY 101
NEWS
PERSONAL FINANCE
NET WORTH
About Us Contact Us Privacy Policy Terms of Use DMCA Opt-out of personalized ads
© Copyright 2023 Market Realist. Market Realist is a registered trademark. All Rights Reserved. People may receive compensation for some links to products and services on this website. Offers may be subject to change without notice.
MARKETREALIST.COM / ECONOMY & WORK

Think Twice Before Hitting ‘Allow’ on Your iPhone—It Could Be a Scam

The main idea of the scam is to bombard the target's phone with several push notifications in hopes that the target will press the allow option.
PUBLISHED MAR 28, 2024
Cover Image Source: iPhone Home Screen | Unsplash | Photo by Jamie Street
Cover Image Source: iPhone Home Screen | Unsplash | Photo by Jamie Street

A new Apple ID spearphishing campaign that uses "push bombing" or "MFA Bombings" has been targeting several tech professionals over the last few weeks. The core concept of the scam involves bombarding the victim's phone with numerous push notifications, commonly referred to as Multi-Factor Authentication (MFA) notifications. The aim is to induce the victim to inadvertently grant permission by selecting "Allow" instead of "Don't Allow" at least once.

Image Source: Photo by PhotoMIX Company | Pexels
Image Source: Photo by PhotoMIX Company | Pexels

Tech professional Parth Patel recently shared his encounter with a scam on X, recounting the onslaught of push notifications across all his Apple devices. These notifications suspiciously requested permission to reset his Apple ID password, raising red flags. What alarmed him most was that these notifications appeared to be "system-level notifications."

Patel found himself bombarded with over 100 push notifications. After clearing them, he received a call from a fake caller ID posing as Apple's legitimate support line, asking for an OTP sent to his phone. To his dismay, the caller possessed accurate personal details, including his date of birth and current address, obtained from a "people search" site called People Data Labs.

 

A separate report from Krebs on Security highlighted similar encounters involving cryptocurrency hedge fund owners and security industry experts. They too fell victim to the scam, emphasizing that the issue was related to their Apple accounts rather than specific devices.

"If you haven’t already, I’d highly suggest scrubbing yourself from people data aggregators such as People Data Labs, Spokeo, Pimeyes, Social Catfish, and others," Patel wrote in a follow-up post. Currently, there's no way one can avoid this scam apart from hitting "Don't Allow" every time the notification appears. 

Cover Image Source: : An Apple corporate logo | Getty Images | Gary Hershorn
Image Source: An Apple corporate logo | Getty Images | Photo by Gary Hershorn

As of now, there haven't been any public reports of individuals succumbing to the Apple ID password reset scam. However, should you inadvertently grant permission by clicking "allow" on the push notification, it could result in permanent loss of access to your iCloud account. This scenario enables a successful attacker to seize control of your photos, and contacts, and even remotely erase your device.

In a particular case mentioned by AppleInsider, a target received guidance from a senior Apple engineer to activate an Apple Recovery Key as a precautionary measure. This key, comprising a 28-character code, serves as a safeguard against the standard account recovery process, providing an avenue for future account retrieval.

 

This isn't the first time Apple has confronted such an attack. In 2019, a bug dubbed "AirDoS" emerged, enabling attackers to inundate nearby iOS devices with incessant prompts to share a file via AirDrop. The Cupertino giant eventually resolved the issue through its iOS 13.3 update.

Now, with reports circulating about the company's emphasis on integrating AI into their upcoming iOS 18, it raises curiosity about potential advancements in screening and addressing such vulnerabilities. It remains to be seen whether Apple will leverage AI to implement more effective measures for identifying and mitigating these types of security threats.

This strategic shift towards AI in iOS 18 could mark a significant step forward in fortifying Apple's ecosystem against emerging cyber threats.

MORE ON MARKET REALIST
Rent still eats up over a third of income in most US counties — despite signs of relief
ECONOMY & WORK
Rent still eats up over a third of income in most US counties — despite signs of relief
The counties with the most expensive housing are located in the West.
8 hours ago
Trump wants to make housing affordable for Americans — but not using retirement funds
ECONOMY & WORK
Trump wants to make housing affordable for Americans — but not using retirement funds
The President recently signed an order barring corporations from buying single family homes.
1 day ago
FDA issues highest possible warning for cookies that could turn fatal due to allergens
ECONOMY & WORK
FDA issues highest possible warning for cookies that could turn fatal due to allergens
If consumed the product could prove fatal for those with a peanut allergy.
1 day ago
‘Price Is Right’ contestant’s last-second mistake costs her a car worth over $25,000
PRICE IS RIGHT
‘Price Is Right’ contestant’s last-second mistake costs her a car worth over $25,000
She missed out on the car by just one number, which must have been painful.
1 day ago
Texas-based grocery chain beats big names like Costco and Amazon to become the best in America
COSTCO
Texas-based grocery chain beats big names like Costco and Amazon to become the best in America
Regional grocers had a fantastic performance as they took the top three spots in the rankings.
1 day ago
A $1.8 billion Powerball jackpot went unclaimed for almost a month — until now
ECONOMY & WORK
A $1.8 billion Powerball jackpot went unclaimed for almost a month — until now
They wished to remain anonymous and took some time to seek financial and legal advice.
1 day ago
The US economy grew faster in the third quarter — and most economists didn't see that coming
ECONOMY & WORK
The US economy grew faster in the third quarter — and most economists didn't see that coming
Increased consumer spending, exports, government expenditure, and investment drove the U.S. economy's 2.5% annualized growth rate.
1 day ago
'Wheel of Fortune' contestant loses out on $45,000 because of a single missing letter
WHEEL OF FORTUNE
'Wheel of Fortune' contestant loses out on $45,000 because of a single missing letter
"The A was a good guess but the B or the O could be used. Q is a rare letter but not frequently used here," a fan reacted.
1 day ago
You’re more likely to buy a home in next 4 months if you fall under this income category
ECONOMY & WORK
You’re more likely to buy a home in next 4 months if you fall under this income category
Homebuying interest is highest among people earning under $50K
2 days ago
Missouri woman buys a $150 watch at thrift store — then she found out its real value
ECONOMY & WORK
Missouri woman buys a $150 watch at thrift store — then she found out its real value
She had a good feeling about the item when she saw it but she wasn't sure of its value.
2 days ago
Getting Social Security benefits could get tricky for Americans with recent changes
ECONOMY & WORK
Getting Social Security benefits could get tricky for Americans with recent changes
The overhaul comes as a direct result of the Trump administration's aggressive budget cuts.
2 days ago
‘Price Is Right’ contestant sweeps Stack the Deck for a new car worth over $23,000
PRICE IS RIGHT
‘Price Is Right’ contestant sweeps Stack the Deck for a new car worth over $23,000
She did not put a foot wrong in her performance which left fans and the cast impressed.
2 days ago
Nvidia CEO says AI will create many jobs and it’s the ‘perfect time’ for the US to jump in
ECONOMY & WORK
Nvidia CEO says AI will create many jobs and it’s the ‘perfect time’ for the US to jump in
He also credited US President Donald Trump for his vision of re-industrialization with AI.
2 days ago
Treasury Secretary's comment about Denmark is turning heads — and not in a good way
ECONOMY & WORK
Treasury Secretary's comment about Denmark is turning heads — and not in a good way
His comments were made in response to a Danish pensioner pulling their investment from the US.
2 days ago
Europe doesn't hold back on Trump's tariff threat — and his next move was totally unexpected
ECONOMY & WORK
Europe doesn't hold back on Trump's tariff threat — and his next move was totally unexpected
This ruling reflects growing trade tensions between the US and Europe amidst the Greenland crisis.
2 days ago
'Wheel of Fortune' contestant loses $50,000 after coming up with answer that amused Ryan Seacrest
WHEEL OF FORTUNE
'Wheel of Fortune' contestant loses $50,000 after coming up with answer that amused Ryan Seacrest
"Honestly, I wouldn’t have gotten that 1," a fan reacted.
2 days ago
‘Price is Right’ contestant ends up losing $6,000 after relying on the audience’s advice
PRICE IS RIGHT
‘Price is Right’ contestant ends up losing $6,000 after relying on the audience’s advice
She did not win much but it would have been better than going home empty-handed.
3 days ago
Bank of America CEO predicts stronger GDP growth — defies general view on Wall Street
ECONOMY & WORK
Bank of America CEO predicts stronger GDP growth — defies general view on Wall Street
Brian Moynihan told Fox that a number of factors will contribute to the US GDP growth.
3 days ago
Donald Trump's aggressive policies might trigger 'capital wars,' warns Ray Dalio
ECONOMY & WORK
Donald Trump's aggressive policies might trigger 'capital wars,' warns Ray Dalio
The President has a desire to take control of Greenland, threatening allies with tariffs.
3 days ago
Over 280,000 people sign petition for Denmark to buy California as they take a jibe at Trump
ECONOMY & WORK
Over 280,000 people sign petition for Denmark to buy California as they take a jibe at Trump
It seems like the people of Denmark are replying to the US by using their own tactics.
3 days ago