As investments in cryptocurrency skyrocket, cases of crypto thefts are rising as well. Crypto wallet provider MetaMask has sent out a warning on Twitter, revealing how Apple iCloud backups could be used as a potential phishing tool. This comes after an Apple user claimed to have lost crypto assets worth $650,000 from his MetaMask crypto wallet.
The new scam involves certain default device settings in iPhones, iPads which store MetaMask users’ seed phrase onto iCloud, whenever anyone enables automatic backups for app data. Metamask is an online cryptocurrency wallet that enables users to store their crypto assets such as Bitcoin, Ethereum, Dogecoin, etc, as well as non-fungible-tokens (NFTs). In order to gain access to the wallet, you need a ‘seed phrase’—which is essentially your password.
A Twitter user by the name ‘Serpent’–who is also a popular NFT and crypto scam analyst– described how the scammers stole from a victim. On April 15, the victim had received multiple text messages asking to reset his Apple ID password. Later in the evening, he received a call from “Apple Inc”, which according to the analyst, was a spoofed caller ID. During the call, the scammers said there was suspicious activity on the victim’s Apple ID and asked for a one-time verification code. This is the six digit verification code sent out to a user when they want to reset their Apple ID password or even login from a different laptop or iPhone, iPad, etc.
After giving out the…
