You can make a difference in the Apple Support Community!

When you sign up with your Apple Account, you can provide valuable feedback to other community members by upvoting helpful replies and User Tips.

Looks like no one’s replied in a while. To start the conversation again, simply ask a new question.

iPad - clicked Malicious Link

I thought I was clicking a link to Netflix dot com and instead it took me to a malicious site Netflix dot com dot *** (suffix blocked for safety).

I was using Firefox app, and it asked me to choose between "Visit site/Download/Cancel" buttons.

I panicked a little, but pretty sure I pressed Cancel.

A search on Google Safe Browsing / Transparency Report revealed it was indeed malicious.

Later I deleted the Firefox app from the iPad.


1) Should I worry about passwords or saved credit cards?

2) Could something malicious get into my iCloud and transfer to other apple devices?


Thanks very much for any help.

iPad Air 2, iPadOS 15

Posted on Nov 2, 2022 12:50 PM

Reply
Question marked as Top-ranking reply

Posted on Nov 2, 2022 5:59 PM

Providing your iPad has been kept up-to-date with system software updates, you should not be overly concerned for your iPad being directly compromised. Provided you have not given away and personal or financially sensitive information, your saved data is unlikely to have been accessed. If you have inadvertently exposed any account credentials or credit card information, change passwords immediately - and inform the relevant card issuers or financial organisations.


Due to the system architecture of iOS/iPadOS, unless jailbroken, your iPad is not susceptible to traditional malware infection per-se. However, as with all computer systems, there are still vulnerabilities and exploits to which you remain vulnerable. For older devices, no longer benefiting from regular security updates, the risk of an unpatched vulnerability being exploited increases. Regardless of the installed version of iPadOS, there are useful mitigations that can be used to significantly reduce your expose to risk.


Be wary of an often repeated myth that Apple devices are immune to malware; those that perpetuate this fallacy, perhaps with good intention, do not necessarily comprehend the broader threat landscape. Apple expend considerable resources in developing and issuing regular software security updates and patches for its products; if the myth had any substance, this would not be necessary.


The majority of threats to which you will be invariably exposed will surface via web pages or embedded links within email. These browser-based attacks can be largely and successfully mitigated by installing a good Content and Ad-blocking product. One of the very best and most respected within the Apple App Store - designed for iPad, iPhone and Mac - is 1Blocker for Safari.

https://apps.apple.com/gb/app/1blocker-for-safari/id1365531024


1Blocker is highly configurable - and crucially does not rely upon an external proxy-service of dubious provenance, often utilised by so-called AntiVirus products intended for iOS/iPadOS. Instead, all processing by 1Blocker takes place on your device - and contrary to expectations, Safari will run faster and more efficiently.


Unwanted content is not simply filtered after download (a technique used by basic/inferior products), but instead undesirable embedded content blocked form download. A further benefit on metered services, such as cellular connections where you data may be capped or chargeable, this not only improves speed but also saves you money. 1Blocker has also recently introduced its new “Firewall” functions - that are explicitly designed to block “trackers”. Being implemented at the network-layer, this additional protection works across all Apps. Recent updates to 1Blocker has introduced additional network extensions, extending protection to other Apps.


A further measure to improve protection is to use a security focussed DNS Service in preference to automatic DNS settings. This can either be set on a per-device basis in Settings, or can be set-up on your home Router - and in so doing extends the benefit of this specific protection to other devices on your local network. I recommend using one of the following DNS services - for which IPv4 and IPv6 server addresses are listed:


Quad9 (recommended)


9.9.9.9

149.112.112.112

2620:fe::fe

2620:fe::9



OpenDNS


208.67.222.222

208.67.220.220

2620:0:ccc::2

2620:0:ccd::2


Cloudflare+APNIC


1.1.1.1

1.0.0.1

2606:4700:4700::1111

2606:4700:4700::1001



Use of the above DNS services will help to shield you from “known bad” websites and URLs - and when used alongside 1Blocker, or other Content Blocker provides defense in depth.


There are advanced techniques to further “harden” iOS/iPadOS (such as using DoH, DoT and DNSSEC). Apple has recently introduced its new Private Relay to its iCloud+ subscribers - in part employing ODoH (a variant of DoH) as an element of this new functionality.


I hope this information and insight proves to be helpful. 

Similar questions

6 replies
Question marked as Top-ranking reply

Nov 2, 2022 5:59 PM in response to MrBranca

Providing your iPad has been kept up-to-date with system software updates, you should not be overly concerned for your iPad being directly compromised. Provided you have not given away and personal or financially sensitive information, your saved data is unlikely to have been accessed. If you have inadvertently exposed any account credentials or credit card information, change passwords immediately - and inform the relevant card issuers or financial organisations.


Due to the system architecture of iOS/iPadOS, unless jailbroken, your iPad is not susceptible to traditional malware infection per-se. However, as with all computer systems, there are still vulnerabilities and exploits to which you remain vulnerable. For older devices, no longer benefiting from regular security updates, the risk of an unpatched vulnerability being exploited increases. Regardless of the installed version of iPadOS, there are useful mitigations that can be used to significantly reduce your expose to risk.


Be wary of an often repeated myth that Apple devices are immune to malware; those that perpetuate this fallacy, perhaps with good intention, do not necessarily comprehend the broader threat landscape. Apple expend considerable resources in developing and issuing regular software security updates and patches for its products; if the myth had any substance, this would not be necessary.


The majority of threats to which you will be invariably exposed will surface via web pages or embedded links within email. These browser-based attacks can be largely and successfully mitigated by installing a good Content and Ad-blocking product. One of the very best and most respected within the Apple App Store - designed for iPad, iPhone and Mac - is 1Blocker for Safari.

https://apps.apple.com/gb/app/1blocker-for-safari/id1365531024


1Blocker is highly configurable - and crucially does not rely upon an external proxy-service of dubious provenance, often utilised by so-called AntiVirus products intended for iOS/iPadOS. Instead, all processing by 1Blocker takes place on your device - and contrary to expectations, Safari will run faster and more efficiently.


Unwanted content is not simply filtered after download (a technique used by basic/inferior products), but instead undesirable embedded content blocked form download. A further benefit on metered services, such as cellular connections where you data may be capped or chargeable, this not only improves speed but also saves you money. 1Blocker has also recently introduced its new “Firewall” functions - that are explicitly designed to block “trackers”. Being implemented at the network-layer, this additional protection works across all Apps. Recent updates to 1Blocker has introduced additional network extensions, extending protection to other Apps.


A further measure to improve protection is to use a security focussed DNS Service in preference to automatic DNS settings. This can either be set on a per-device basis in Settings, or can be set-up on your home Router - and in so doing extends the benefit of this specific protection to other devices on your local network. I recommend using one of the following DNS services - for which IPv4 and IPv6 server addresses are listed:


Quad9 (recommended)


9.9.9.9

149.112.112.112

2620:fe::fe

2620:fe::9



OpenDNS


208.67.222.222

208.67.220.220

2620:0:ccc::2

2620:0:ccd::2


Cloudflare+APNIC


1.1.1.1

1.0.0.1

2606:4700:4700::1111

2606:4700:4700::1001



Use of the above DNS services will help to shield you from “known bad” websites and URLs - and when used alongside 1Blocker, or other Content Blocker provides defense in depth.


There are advanced techniques to further “harden” iOS/iPadOS (such as using DoH, DoT and DNSSEC). Apple has recently introduced its new Private Relay to its iCloud+ subscribers - in part employing ODoH (a variant of DoH) as an element of this new functionality.


I hope this information and insight proves to be helpful. 

Nov 2, 2022 7:55 PM in response to LotusPilot

Thanks very much, LotusPilot, and to you others who responded.

My iPad is an old one, in its final year of support, but at the time this happened, it was running the OS version 15.6 or 15.7

I didn't have passwords saved directly in Firefox.

So you wouldn't worry about passwords for other apps, like Mail or Hulu or Apple ID, provided they were not typed into Firefox browser?

Sorry for being nit-picky. Cybersecurity is not my forte, but I'm picking up stuff as I go along.

iPad - clicked Malicious Link

Welcome to Apple Support Community
A forum where Apple customers help each other with their products. Get started with your Apple Account.