You can make a difference in the Apple Support Community!

When you sign up with your Apple Account, you can provide valuable feedback to other community members by upvoting helpful replies and User Tips.

Looks like no one’s replied in a while. To start the conversation again, simply ask a new question.

Getting hacked

this morning an alert appeared on my IPad along with audio that would not stop: Apple security breach, call this number immediately. I did…what do I do now?

iPad, iPadOS 15

Posted on Oct 26, 2022 2:39 PM

Reply
Question marked as Top-ranking reply

Posted on Oct 26, 2022 2:42 PM

All such messages are scams presented by criminals, 100% of the time, no exceptions. Do not interact with the message or the sender. If you have called the number, what was the result of that call?


Phony "tech support" / "ransomware" popup… - Apple Community


4 replies

Oct 26, 2022 3:16 PM in response to Blusterer

See >>> Recognize and avoid phishing messages, phony support calls, and other scams - Apple Support


Expanding upon information already provided…


Do not click or otherwise interact with the page. Simply close the browser tab.


Providing that you have not attempted to jailbreak your device - or have bypassed protections by side-loading third-Apps, then it is highly unlikely that your device will have been infected with a virus or other malware.


Most alerts that you see are pop-up messages from websites - these being designed to scare the unwary into giving away sensitive information - or to fool you into doing something that you shouldn’t.


Due to the system architecture of iOS/iPadOS, unless jailbroken, your iPad is not susceptible to traditional malware infection per-se. However, as with all computer systems, there are still vulnerabilities and exploits to which you remain vulnerable. For older devices, no longer benefiting from regular security updates, the risk of an unpatched vulnerability being exploited increases. However, there are effective mitigations that you can employ to reduce your potential exposure to this type of scam and/or potential exploit.


The majority of threats to which you will be invariably exposed will surface via web pages or embedded links within email. These browser-based attacks can largely be mitigated by installing a good Content and Ad-blocking product. One of the very best and most respected within the Apple App Store - designed for iPad, iPhone and Mac - is 1Blocker for Safari.

https://apps.apple.com/gb/app/1blocker-for-safari/id1365531024


1Blocker is highly configurable - and crucially does not rely upon an external proxy-service of dubious provenance. All processing takes place on your device - and contrary to expectations, Safari will run faster and more efficiently. 


Unwanted content is not simply filtered after download (a technique used by basic/inferior products), but instead undesirable embedded content blocked form download. A further benefit on metered services, such as cellular connections where you data may be capped or chargeable, this not only improves speed but also saves you money. 1Blocker has also recently introduced its new “Firewall” functions - that are explicitly designed to block “trackers”. Being implemented at the network-layer, this additional protection works across all Apps. Recent updates to 1Blocker has introduced additional network extensions, extending protection to other Apps.


A further (strongly recommended) measure to improve protection is to use a security focussed DNS Service in preference to automatic DNS settings. This can either be set on a per-device basis in Settings, or can be set-up on your home Router - and in so doing extends the benefit of this specific protection to other devices on your local network. I recommend using one of the following DNS services - for which IPv4 and IPv6 server addresses are listed:


Quad9 (recommended)


9.9.9.9

149.112.112.112

2620:fe::fe

2620:fe::9



OpenDNS


208.67.222.222

208.67.220.220

2620:0:ccc::2

2620:0:ccd::2


Cloudflare+APNIC


1.1.1.1

1.0.0.1

2606:4700:4700::1111

2606:4700:4700::1001



Use of the above DNS services will help to shield you from “known bad” websites and URLs - and when used alongside 1Blocker, or other Content Blocker provides defense in depth.


There are advanced techniques to further “harden” iOS/iPadOS (such as using DoH, DoT and DNSSEC). Apple has recently introduced its new Private Relay to its iCloud+ subscribers - in part employing ODoH as an element of this new functionality.


I hope this information and insight proves to be helpful. 


Oct 26, 2022 3:42 PM in response to stedman1

The scammers had me install an app (which I have deleted, anydesk I think it was called) and they used that to get my IP address, they asked if I had gotten suspicious emails, I said I had gotten 1 last week which was dopey and easily ignored, they said if I see anything fishy with bank accounts call the bank and have them put me on high security alert, they seemed to lose interest when I said I don’t bank on line or do any transactions except buy books and tickets. I am no dope and been around the block…but taken in by them. Thanks.

Getting hacked

Welcome to Apple Support Community
A forum where Apple customers help each other with their products. Get started with your Apple Account.