Your iPhone can become useless to thieves once marked as lost. Apple’s Activation Lock can transform a stolen phone into a non-functional device, reducing the appeal of phone theft. Despite this, thieves have developed a workaround.
Recent research from Infoblox Threat Intel highlights how criminals use fake Apple pages, smishing texts, and Telegram-based unlocking tools to deceive iPhone owners into providing their passcodes. Infoblox tracks cybercriminal activity by studying DNS—akin to the internet’s phone book—to identify fake domains and phishing pages.
The scam feels personal as messages may arrive immediately after theft showing maps that mimic Apple’s Find My iPhone feature. Researchers found thieves are often more interested in reselling the device than accessing its data. Once they acquire your passcode, the device can be unlocked, wiped, and sold.
Cybercriminals are using fake Apple pages and text messages to trick stolen iPhone owners into giving up their passcodes.
The stolen iPhone passcode scam often begins with a message on your lock screen encouraging contact. Thieves exploit this by sending links to fake Apple websites asking for passcodes. Victims might inadvertently assist thieves in unlocking their devices.
Thieves desire your passcode as it turns a locked iPhone into a valuable, sellable item. Telegram groups offer unlocking services for a modest fee. Some services include fake Apple login pages, and tools for newer devices to enhance phishing attacks.
Fake Apple texts make the scam convincing through customized phishing pages displaying personal information and purported phone location. Once a victim enters data, criminals process it via Telegram, removing linked devices for resale.
How to Avoid Falling Victim to iPhone Scams
- Never enter your passcode via a text link: Keep your iPhone passcode safe and refrain from using unexpected website links prompted from texts.
- Utilize Find My directly: Use the app on another device or access via iCloud through a browser.
- Treat urgent messages as suspicious: Analyze recovery messages critically and open Apple’s official tools instead.
- Use a strong passcode: Choose complex codes, avoiding simple or patterned numbers.
- Ensure Activation Lock is active: Enable ‘Find My iPhone’ in settings to maintain protection.
- Keep stolen devices listed: Do not hastily remove them from your Apple account.
- Install robust antivirus software: Guard against malicious links and phishing pages.
- Report theft promptly: Inform local authorities and your wireless carrier to block service.
Android users face similar challenges with fake recovery messages requesting passwords. Always use trusted sites like Google’s Find Hub or official websites to manage the situation.
Key Takeaways: The iPhone’s Activation Lock used to deter thieves. Now, scammers involve you in unlocking through manipulative texts and convincing maps. Stay vigilant by using official tools to avoid giving away passcodes.
Kurt “CyberGuy” Knutsson provides essential tech tips and security alerts. Sign up for his newsletter to stay informed about the latest in technology and safety.
Navigating the Risks of Public Wi-Fi 
Disneyland’s Autopia Ride to Transition to Electric 
The High Stakes of Investing in SpaceX 
China Pioneers First Commercial Brain Chip Amid Privacy Concerns 
Airbnb Offers Free FIFA World Cup Tickets with Select Rentals 
Gen Z’s Concerns and Usage of AI