Apple Inc AAPL users who have enabled an iCloud backup for app data could be at the risk of losing cryptocurrency stored in their MetaMask wallet.
What Happened: In a Twitter update on Sunday, MetaMask warned users that they may be susceptible to phishing attacks if their Apple ID password “isn’t strong enough.”
You can disable iCloud backups for MetaMask specifically by turning off the toggle here:
— MetaMask (@MetaMask) April 17, 2022
Settings > Profile > iCloud > Manage Storage > Backups.
2/3
See Also: What is MetaMask Wallet?
MetaMask’s announcement comes after a user by the name of Domenic Iacovone reported as much as $650,000 stolen from his MetaMask wallet as a result of a phishing scam.
This is how it happened, Got a phone call from apple, literally from apple (on my caller Id) Called it back because I suspected fraud and it was an apple number. So I believed them
— Domenic Iacovone (@revive_dom) April 14, 2022
They asked for a code that was sent to my phone and 2 seconds later my entire MetaMask was wiped
According to a run-down of the events by DAPE NFT Founder “Serpent”, the scammers were able to access Iacovone’s MetaMask wallet because his seed phrase had been automatically saved on his iCloud storage without his knowledge.
3/ MetaMask actually saves your seed phrase file on your iCloud. The scammers requested a password reset for the victim's Apple ID. After receiving the 2FA code, they were able to take control over the Apple ID, and access iCloud which gave them access to the victim's MetaMask.
— Serpent (@Serpent) April 17, 2022
The scammers used a spoofed caller ID marked as Apple to convince the user a share a code sent to his device, claiming suspicious activity linked to his account.
After he shared the code, the scammers used it to reset his Apple password and enter his iCloud account, where they were able to access all data stored, including the one stored by MetaMask.
The scammers stole 132.86 Ethereum ETH/USD worth $402,988 and $252,400 in Tether USDT/USD.
© 2024 Benzinga.com. Benzinga does not provide investment advice. All rights reserved.
Comments
Trade confidently with insights and alerts from analyst ratings, free reports and breaking news that affects the stocks you care about.
