Scammers have a new phishing trick for iPhone users – here’s how to avoid falling victim

Man holding a mobile phone with warning notification and spam message icon
(Image credit: Getty Images)

  • Scammers have a new trick up their sleeves, and are using it on iPhone users
  • They tell you to reply to their texts, which disables Apple’s scam protection
  • Thankfully, there are a few ways you can stay safe

Apple has built several scam-protection tools into iOS, one of which disables links in SMS messages if the text comes from an unknown number. However, it looks like scammers have found a way to bypass these defenses and send you dangerous links, despite Apple’s best efforts.

As noted by Bleeping Computer, links are re-enabled if you reply to a message from an unknown source, as Apple assumes that replying means you trust the sender enough to also trust the URLs they’ve included.

However, scammers have latched onto this by instructing their victims to reply to their message, then click the re-enabled links. For instance, one scam message seen by Bleeping Computer contained a phishing link (which had been disabled), with the following text underneath it:

“Please reply Y, then exit the text message, reopen the text message activation link, or copy the link to Safari browser to open it.”

The idea seems to be that people are so used to replying to automated texts with things like 'YES' and 'NO' that they will automatically do the same with the phishing messages, thereby enabling potentially dangerous links to work again.

How to stay safe

A hacker typing on a MacBook laptop with code on the screen.

(Image credit: Sora Shimazaki / Pexels)

If you receive an unexpected message from an unknown source and see that the text contains links, do not reply to it. Doing so will make the links live again, but simply ignoring the text (and reporting it as spam) will ensure you can’t fall victim to it.

If you aren’t sure whether a message is genuine or not, the advice remains the same: do not reply to it. Instead, contact the company directly using its official channels. This will put you in touch with a legitimate employee who will be able to tell you whether the message you received is trustworthy or not.

Even if you don’t click any suspicious links in the text, simply replying to the message will signal to the scammer that your number is active and that you are willing to engage with phishing messages, making you an inviting target.

It’s better to be safe than sorry in these situations. If you’ve been sent a text you weren’t expecting from a sender that claims to be an official source, it’s best to be cautious rather than take any unnecessary risks. If in doubt, simply report it and don't interact with it.

You might also like

TOPICS
Alex Blake
Freelance Contributor

Alex Blake has been fooling around with computers since the early 1990s, and since that time he's learned a thing or two about tech. No more than two things, though. That's all his brain can hold. As well as TechRadar, Alex writes for iMore, Digital Trends and Creative Bloq, among others. He was previously commissioning editor at MacFormat magazine. That means he mostly covers the world of Apple and its latest products, but also Windows, computer peripherals, mobile apps, and much more beyond. When not writing, you can find him hiking the English countryside and gaming on his PC.

You must confirm your public display name before commenting

Please logout and then login again, you will then be prompted to enter your display name.

Read more
Fraude en ligne phishing
Google forced to step up phishing defenses following ‘most sophisticated attack’ it has ever seen
A scam text from a Post Office delivery
Fake parcel delivery texts are the fastest-growing phishing scam this holiday season – here’s how to avoid them
An iPhone sitting on a wooden table
Millions at risk as malicious PDF files designed to steal your data are flooding SMS inboxes - how to stay safe
Smartphone with new logo X twitter app background. Application twitter old blue bird change X black and white new.
Phishing campaign targets prominent X users, accounts at risk
Paper craft illustration of a suspicious email that contains a snake
How to spot a phishing email
A fish hook is lying across a computer keyboard, representing a phishing attack on a computer system
Everything you need to know about phishing
Latest in Phones
Samsung Galaxy Z Fold 6
The Samsung Galaxy Z Fold 7 could be in line for a Galaxy S25 Ultra-level camera upgrade
Google Pixel 9
Android 16 could bring an improved Samsung DeX-style desktop mode to more phones
Apple products all showing different versions of the Apple Photos app
Apple Photos could actually win you over in iOS 18.4 – here are 4 improvements that are coming
Google Pixel 9 in Wintergreen showing back camera bar
The Google Pixel 10 could get a big camera boost if this new leak is legit
The Samsung Galaxy S25 Edge, close up on the dual camera system, against a marbled background
The Samsung Galaxy S25 Edge is being tipped to come with a sweet Google Gemini deal
Google Pixel 9 on green grey background with price cut text overlay
Want to get a half-price unlimited plan and a Google Pixel 9 for just $400? Check out Mint Mobile this week
Latest in News
Samsung Galaxy Z Fold 6
The Samsung Galaxy Z Fold 7 could be in line for a Galaxy S25 Ultra-level camera upgrade
Data leak
Hacked Tata Technologies data leaked by ransomware gang
A close up of Billy Bob Thornton's Tommy Norris in Paramount Plus' Landman TV series
The Taylor Sheridan supremacy lives on at Paramount+ as Landman gets renewed for season 2
Ryzen 9000 promotional material
AMD's most powerful processor ever actually runs better on Windows 10 than Windows 11
A white Samsung logo on a black sign, people with suitcases walking past
Samsung tipped to unveil first-ever bone-conduction headphones at Galaxy Z Fold 7 event
Intel CEO Lip-Bu Tan
Intel reveals its new CEO