ConsenSys-owned crypto wallet provider MetaMask has sent a warning to the community about Apple iCloud phishing attacks.
Security issues for iPhone, Mac, and iPad users are related to the user’s default device setting of the seed phrase or “password-encrypted MetaMask vault” stored in iCloud if users have enabled automatic backups of their app data.
In a Twitter thread posted on April 18, MetaMask stated that users are at risk of losing funds if their Apple passwords are “not strong enough” and that attackers can phishing their credentials. account
To fix this issue, users can “disable” automatic iCloud backups.
If you have enabled iCloud backup for app data, this will include your password-encrypted MetaMask vault. If your password isn’t strong enough, and someone phishes your iCloud credentials, this can mean stolen funds. (Read on
) 1/3
— MetaMask
(@MetaMask) April 17, 2022
The MetaMask warning comes from a report from NFT collector “revive_dom” on Twitter, whichspecifyIt was on April 15th that all of their wallets had $650,000 worth of digital assets and NFTs missing because of this security issue.
The founders of the DAPE NFT project “Serpent” – shared a story with their 277,000 followers — outlining what happened to the victims.
They noted that The victim received several messages asking him to reset his Apple ID password along with an incoming call from Apple, which ultimately would have been scammers.
“revive_dom” gave them a six-digit verification code to prove they were the owners of the Apple account. The scammers later hung up and accessed his MetaMask account via data stored in iCloud.
Others emphasize the importance of using cold storage and conducting extreme due diligence when storing assets in hot wallets.
The post MetaMask warned Apple users about the iCloud phishing attack appeared first on Bitcoin Addict.