In the newest phishing hack, iCloud MetaMask users are being targeted. There has been a steady rise in phishing hacks in recent weeks. The latest is targeting Apple users who use a popular crypto wallet. Ultimately, this intelligent hack relies on users believing the scam and providing personal details.
In this instance, the phishing hack convinces iCloud MetaMask holders to divulge information, such as passwords. From this, they can access MetaMask data available through iCloud. This is possible due to the automatic data backup function from Apple.
MetaMask issues advice to counter iCloud phishing hack.
Now, MetaMask has issued a warning to Apple users, so they don’t find themselves at the wrong end of this iCloud phishing hack.
MetaMask detailed how to remove the automatic backup function from their Apple devices. In a statement via their Twitter page, they acknowledged the hack on Sunday evening. They said, “If you have enabled iCloud backup for app data, this will include your password-encrypted MetaMask vault. If your password isn’t strong enough, and someone phishes your iCloud credentials, this can mean stolen funds.”.
The post shows how to do this and will undoubtedly save some people’s Crypto funds and NFTs. However, this will come as a late consolation for those who have already fallen victim to this iCloud MetaMask phishing scam.
This is also a reminder that you can be as cautious as possible, but you need to keep up to date with the latest scams. You need to follow the safest and most up-to-date security protocols at all times. For all the good people involved in the Web 3.0 space, some people just want to help themselves and are happy using awful methods.
How did we find out about this phishing hack?
Unfortunately, this complicated hack is only known because it happened to someone. NFT collector Domenic Iacovone tweeted, “My entire wallet was just stolen. Totally wiped out”. He received messages and phone calls from Apple (it showed Apple Inc as the caller ID).
He then says he called the number back because he suspected fraud. What happened next was terrifying. He said, “They asked for a code, sent it to my phone, and 2 seconds later, my entire MetaMask was wiped”.
The MetaMask iCloud phishing hack allowed the fraudsters to steal numerous NFTs. These included three Mutant Ape Yacht Club NFTs, Three Gutter Cat Gang NFTs and much more.
In fact, along with the NFTs and over one hundred thousand dollars worth of ApeCoin, the loss adds up to over $650,000. He offered a $100,000 reward for information, but there are no leads so far.
@Serpant, the security specialist and founder of Sentinal, the crypto security firm, offered their expert analysis on the hack. This detailed thread exposes the MetaMask iCloud phishing scam and provides advice on protecting yourself. It is worth checking out for those unsure about what to do next.