Warning! JavaScript is turned off or disabled! Some features on this website will not work.
Alerts left arrow right arrow   

Apple iPhone SMS Spoofing Bug Warning

Comments  +
Apple iPhone SMS Spoofing Bug Warning

The IPhone/IPad Short Message Service (SMS) application (app) has a bug that scammers and hackers could exploit. The bug allows the sending of a text message to someone and changing the phone number the message is being sent from to another. For example, someone could send a text message from 555-555-5500 and change this number to let it appear as if it came from 555-555-5555.

Please continue below.

Short Message Service (SMS) is a text messaging service that is used by mobile devices (usually cellphones) to exchange short text messages between each other.

What causes this exploit is how Apple iOS implements User Data Header (UDH) of the text messaging service, which allows the phone number the text is suppose to be sent from, to be changed to another number.

A scammer can use this exploit to send a message to his victim with a link to a phishing (malicious) website and change the telephone number the text is being sent from, to the victim's bank or other trusted institutions telephone number.

Phishing is an attempt to acquire information such as usernames, passwords, credit card and personal information by impersonating legitimate websites.

The victim will click on the link not knowning it goes to a malicious website and trusting it is safe because the text message appeared to have came from their bank or another trusted institution.

After clicking on the malicious link, the victim maybe taken to the phishing website and ask to enter their username, password, credit card and personal information. If the victim enters his/her information, it will be sent to the scammers behind this exploit which will be use to defraud the victim.

This technique of changing the phone number that a text message is being sent from, is called SMS spoofing. Your computer's IP address, cellphone number and email address can also be spoofed.

Please be careful when clicking on links in a text or e-mail message. Ensure that your address bar has the correct website address.

For example, if you are asked to login to your hotmail account, ensure that the address bar has the address live.com and no other addresses.

Please share with us what you know or ask a question about this article by leaving a comment below. Also, check the comment section below for additional information, if there is any.

Remember to forward malicious or phishing email messages to us at the following email address: info@onlinethreatalerts.com

Share this on:

and/or ContributionDonate

Would you recommend this article to a friend or family member?
Yes (0) No (0)   

Comments, Questions and Reviews
Comment(Total: 0)

To help protect your privacy, please do not post your full name, telephone number, email address, username, password, account number, credit card information or home address in your comments, questions, or reviews.

Write a Comment, Review, or ask a Question or scroll down to view comments, reviews and questions made by others.

Submit Comment Write Your Comment, Question or Review

Write your comment, question or review in the box below to share what you know or to get answers. Please revisit after an hour or more to view reponses or answers to you questions.
All comments, questions or reviews will be examined for derogatory or indecent statements, spam or malicous code, before they are posted on this website.