News

iPhone users warned over fake iCloud storage scam

iPhone users are being warned to avoid clicking links in unsolicited iCloud storage messages, as scammers target Apple customers with phishing emails and texts designed to steal account credentials, payment details and personal information.

The scam typically arrives as an email or text message claiming that the recipient’s iCloud storage is full, their payment method has failed, or their account has been blocked. Some messages warn that photos, videos or other stored data will be deleted unless the user takes urgent action.

The messages often include Apple-style branding, familiar design elements and buttons urging users to update payment details, manage storage or upgrade their iCloud plan. Those links can lead to convincing fake websites built to capture Apple ID logins, credit card information and other sensitive details.

Security experts say the scam is effective because it exploits a deeply personal fear: losing access to irreplaceable photos, videos, contacts and device backups. By adding urgent deadlines and warnings about deletion or account suspension, attackers pressure users into clicking before they have time to question whether the message is real.

Apple does send genuine iCloud storage notifications, but users should check them through official channels rather than through links in emails or text messages. The safest approach is to open Settings on the iPhone, tap the Apple Account name at the top of the screen, then check iCloud storage directly from there.

Apple warns that social engineering scams often rely on impersonation and manipulation to gain trust before tricking users into handing over account information or financial details. The company advises users not to respond to suspicious messages claiming to be from Apple, and instead to contact Apple through official support channels.

There are several warning signs that an Apple-related message may be fake. The sender’s email address or phone number may not match Apple’s official details. A link may look legitimate at first glance but lead to a different domain. The message may request passwords, payment details or other personal information. It may also contain unexpected attachments, unusual formatting, spelling errors or urgent threats designed to provoke panic.

Anyone who receives a suspicious email that appears to be from Apple can forward it to [email protected]. Suspicious SMS messages can be reported by taking a screenshot and emailing it to the same address. Apple also advises users who think they may have entered personal information on a scam website to change their Apple Account password immediately.

The risk is significant because an Apple ID can sit at the centre of a person’s digital life. It may connect to photos, messages, contacts, device backups, payment methods, app purchases, location features and other services. If attackers gain access, the damage can extend well beyond a single fake storage alert.

Users who believe they have fallen for the scam should change their Apple ID password, enable two-factor authentication if it is not already active, review trusted devices, check payment cards and monitor bank accounts for unusual activity.

The wider lesson is that phishing is becoming more polished, more emotional and more targeted. Scammers no longer need crude messages to succeed. They can imitate trusted brands, exploit familiar digital anxieties and push people to act quickly.

As cyber threats become more convincing, stronger defences begin with better knowledge. The Hack Academy’s online courses help individuals and teams recognise scams, understand common attack tactics and build safer digital habits.

Knowledge is power. Upskill your cybersecurity awareness with The Hack Academy’s online courses: https://training.thehackacademy.com/course/

Leave a Reply

Your email address will not be published. Required fields are marked *