You are logged in
Loading…
You don’t have any Active Subscription.
Subscribed with another email? Logout and Login with that one.
Your active subscription(s)
Account subscription benefits alongside Premium Stories, Editorials, Opinions and more. Unlock these with Subscription
Products you’ve access to
Additional Subscription Benefits
Account Settings
Need help with your subscription?
May 23, 2026e-Paper
The View From India Looking at World Affairs from the Indian perspective.
First Day First Show News and reviews from the world of cinema and streaming.
Today's Cache Your download of the top 5 technology stories of the day.
Science For All The weekly newsletter from science writers takes the jargon out of science and puts the fun in!
Data Point Decoding the headlines with facts, figures, and numbers
THEdge At the cutting edge of education and careers
Health Matters Ramya Kannan writes to you on getting to good health, and staying there
Gender Agenda Stories from beyond the binary.
The Hindu On Books Books of the week, reviews, excerpts, new titles and features.
May 23, 2026e-Paper
Published – May 23, 2026 10:25 pm IST
Hackers impersonate Apple Support, and exploit victims’ urgency to locate or secure their missing devices through fraudulent SMS messages containing phishing links. Image used for representative purpose only. | Photo Credit: Reuters
The Indian Cybercrime Coordination Centre (I4C), under the Ministry of Home Affairs (MHA), has identified a sophisticated phishing campaign targeting Apple iPhone users whose devices have been lost or stolen, according to an advisory issued by the agency.
Hackers impersonate Apple Support, and exploit victims’ urgency to locate or secure their missing devices through fraudulent SMS messages containing phishing links.
“These messages closely resemble legitimate 'Find My iPhone' or Apple Support notifications and redirect users to counterfeit Apple login pages designed to steal Apple ID credentials and One-Time Passwords (OTP). Once compromised, attackers gain unauthorised access to victims’ accounts and remove the linked Apple ID from the stolen device,” the advisory said.
The National Cybercrime Threat Analytics Unit of the I4C asked affected people to “avoid clicking links received via SMS (especially from international SMS Headers) or unsolicited messages and carefully check the URL before entering credentials”.
It added that the perpetrators in possession of the stolen iPhones target device owners through deceptive means.
Fraudulent SMSs are usually sent from numeric headers. “These messages contain phishing links and typically claim that the lost device has been temporarily switched off or that urgent action is required to erase contacts, media, and other data. When victims click the phishing link, they are redirected to a fraudulent website designed to closely resemble the official Apple Support or iCloud login page. The phishing domains often use deceptive naming conventions to appear legitimate,” it said.
Victims are then prompted to enter their Apple ID credentials, followed by the One-Time Password (OTP) or two-factor authentication code sent by Apple.
“Once the credentials and OTP are obtained, perpetrators gain unauthorised access to the victim’s iCloud account, remove the Apple ID linked from the stolen device, disable 'Find My iPhone’, bypass security features, and resell or reuse the device without restrictions,” the advisory added.
It urged users to use Apple’s official “Find Devices” service page—https://www.icloud.com/find—to trace the missing devices.
Published – May 23, 2026 10:25 pm IST
India / fraud
Copyright© 2026, THG PUBLISHING PVT LTD. or its affiliated companies. All rights reserved.
BACK TO TOP
Terms & conditions  |  Institutional Subscriber
Comments have to be in English, and in full sentences. They cannot be abusive or personal. Please abide by our community guidelines for posting your comments.
We have migrated to a new commenting platform. If you are already a registered user of The Hindu and logged in, you may continue to engage with our articles. If you do not have an account please register and login to post comments. Users can access their older comments by logging into their accounts on Vuukle.

source