{"id":24337,"date":"2022-04-18T14:06:17","date_gmt":"2022-04-18T18:06:17","guid":{"rendered":"https:\/\/coinscreed.com\/staging\/?p=24337"},"modified":"2022-04-18T14:06:25","modified_gmt":"2022-04-18T18:06:25","slug":"metamask-warns-apple-users-of-phishing-attack","status":"publish","type":"post","link":"https:\/\/coinscreed.com\/staging\/metamask-warns-apple-users-of-phishing-attack\/","title":{"rendered":"MetaMask warns Apple users of phishing attack"},"content":{"rendered":"\n
After an iPhone user<\/a> complained of losing over $650,00 in NFTs and ApeCoin, MetaMask issued a warning to Apple users about phishing attacks and how to protect themselves from getting defrauded.<\/h5>\n\n\n\n
\"MetaMask
MetaMask warns Apple users of phishing attack<\/figcaption><\/figure><\/div>\n\n\n\n

On April 17, MetaMask issued a warning to Apple users about phishing attacks after an iPhone user was defrauded of $650,000 in NFTs and ApeCoin <\/a>(APE).<\/p>\n\n\n\n

The default settings on devices like the iPhone, iPad, and MacBook, according to MetaMask, allow hostile actors to read the seed phrase or “password-encrypted MetaMask vault” kept on Apple's iCloud storage service\r\n \r\n \r\n \r\n <\/g>\r\n \r\n \r\n \r\n <\/clipPath>\r\n <\/defs><\/svg><\/span><\/a>.<\/p>\n\n\n\n

\n

\ud83d\udd12 If you have enabled iCloud backup for app data, this will include your password-encrypted MetaMask vault. If your password isn\u2019t strong enough, and someone phishes your iCloud credentials, this can mean stolen funds. (Read on \ud83d\udc47) 1\/3<\/p>— MetaMask.eth \ud83e\udd8a (@MetaMask) April 17, 2022<\/use><\/svg><\/span><\/a><\/blockquote>

About the Hack<\/h2>\n\n\n\n

Domenic Iacovone, a Twitter user, claimed on April 15 that he had lost all of his non-fungible tokens (NFTs) in his wallet. Three Mutant Apes, three Gutter Cats, and $100,000 in ApeCoin were among the items.<\/p>\n\n\n\n

Iacovone stated he received a call on his phone from an Apple number, according to caller ID. He didn't pick up the phone at first but phoned it back because the caller ID showed it was from Apple.<\/p>\n\n\n\n

\"\"<\/figure>\n\n\n\n

The caller, however, was a scammer using a phony phone number. Under the guise of being an Apple official, he asked Iacovone for a code to be transmitted to his phone. Iacovone claimed that seconds after sharing the code with the scammer, he lost everything in his Metamask wallet<\/a>.<\/p>\n\n\n\n

\n

Hey y\u2019all, let\u2019s see how amazing this community can be. My entire wallet was just stolen. Totally wiped out,

MAYC 28478, MAYC 8952, MAYC 7536

Gutter cat 2280 , 2769, 2325
Also stole 100k in ape coin.
Looking for all the help I can get.

100kreward @BoredApeYC<\/use><\/svg><\/span><\/a> @GutterCatGang<\/use><\/svg><\/span><\/a><\/p>— Domenic Iacovone (@revive_dom) April 14, 2022<\/use><\/svg><\/span><\/a><\/blockquote>

Explaining the Hack<\/h2>\n\n\n\n

The phishing attack was explained by Twitter user @Serpent, the founder of crypto threat mitigation system Sentinel. According to him, the attacker pretended to be from Apple and reported that there was suspicious activity on the account using a caller ID spoofer.<\/p>\n\n\n\n

\nhttps:\/\/twitter.com\/Serpent\/status\/1515545806857990149\n<\/div><\/figure>\n\n\n\n

The scammer then demanded that the victim's Apple ID password be reset. The victim will be given a code to reset their password, and the fraudster will ask for it, stating it is to prove their ownership of the Apple ID.<\/p>\n\n\n\n

The scammer really uses the code to reset the victim's password, giving them access to their iCloud account. They can access MetaMask data stored on iCloud and take the victims' assets.<\/p>\n\n\n\n

MetaMask gives a solution<\/h2>\n\n\n\n

According to MetaMask, users can turn off iCloud backups for their app by “Settings > Profile > iCloud > Manage Storage > Backups,” <\/p>\n\n\n\n

\n

You can disable iCloud backups for MetaMask specifically by turning off the toggle here:
Settings > Profile > iCloud > Manage Storage > Backups.
2\/3<\/p>— MetaMask.eth \ud83e\udd8a (@MetaMask) April 17, 2022<\/use><\/svg><\/span><\/a><\/blockquote>

For those who want to turn off the feature entirely, they can do so at \u201cSettings > Apple ID\/iCloud > iCloud > iCloud Backup.\u201d<\/p>\n","protected":false},"excerpt":{"rendered":"

After an iPhone user complained of losing over $650,00 in NFTs and ApeCoin, MetaMask issued a warning to Apple users about phishing attacks and how to protect themselves from getting defrauded. On April 17, MetaMask issued a warning to Apple users about phishing attacks after an iPhone user was defrauded of $650,000 in NFTs and […]<\/p>\n","protected":false},"author":12,"featured_media":24347,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_jetpack_memberships_contains_paid_content":false,"footnotes":""},"categories":[21],"tags":[408,8542,5100],"class_list":["post-24337","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-news","tag-apple","tag-iphone-2","tag-metamask"],"jetpack_featured_media_url":"https:\/\/coinscreed.com\/staging\/wp-content\/uploads\/2022\/04\/image-117.png","jetpack_sharing_enabled":true,"_links":{"self":[{"href":"https:\/\/coinscreed.com\/staging\/wp-json\/wp\/v2\/posts\/24337","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/coinscreed.com\/staging\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/coinscreed.com\/staging\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/coinscreed.com\/staging\/wp-json\/wp\/v2\/users\/12"}],"replies":[{"embeddable":true,"href":"https:\/\/coinscreed.com\/staging\/wp-json\/wp\/v2\/comments?post=24337"}],"version-history":[{"count":0,"href":"https:\/\/coinscreed.com\/staging\/wp-json\/wp\/v2\/posts\/24337\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/coinscreed.com\/staging\/wp-json\/wp\/v2\/media\/24347"}],"wp:attachment":[{"href":"https:\/\/coinscreed.com\/staging\/wp-json\/wp\/v2\/media?parent=24337"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/coinscreed.com\/staging\/wp-json\/wp\/v2\/categories?post=24337"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/coinscreed.com\/staging\/wp-json\/wp\/v2\/tags?post=24337"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}