nachtjenevel

Q: iPhone 6s hacked this morning

My iPhone 6s was hacked this morning, while I was using it.  It suddenly went to the lock screen of its own accord, and a message in what looks like phonetic Russian was displayed along with an email address of appleforgot03 at gmail dot com.  Swiping right requires me to input my security code, which I wasn't about to do.  I put it in airplane mode, immediately changed my Apple password, and am now in the process of factory resetting it (I live in a rural area of NE Scotland and it will take an estimated 4 hours to download the required software update).  How does this happen?  I have not downloaded any apps from anywhere other than the Apple App Store, my iPhone is not jailbroken and was bought brand new last November from Three.co.uk.  Two days ago I signed up on the Apple site to beta test the latest iOs release for iPhone - I've beta tested a few OS and used the official sign-up site, using my own iTunes account, etc.  The only time I was on an unknown wifi connection in recent weeks was at the Apple Store at Union Square mall in Aberdeen, Scotland, which I used for a short time to backup my iPhone to iCloud while I was in the store.  It didn't finish.  If the factory reset doesn't work I'll have to take it in to the Genius Bar.  I just want to point out this is not a jailbroken phone, and yet someone managed to hack it.  Clearly there is a security flaw *somewhere* here.

iPhone 6s, iOS 9.3.2

Posted on Jun 21, 2016 1:04 AM

Close

Q: iPhone 6s hacked this morning

  • All replies
  • Helpful answers

  • by ckuan,

    ckuan ckuan Jun 21, 2016 1:09 AM in response to nachtjenevel
    Level 7 (33,713 points)
    Jun 21, 2016 1:09 AM in response to nachtjenevel

    Since it was not jailbroken then there was no hack, maybe a spam message.

    Clear out your Safari cookies and

    do a force restart:

    http://support.apple.com/en-us/HT201559

  • by Loewchen,Helpful

    Loewchen Loewchen Jun 21, 2016 8:58 AM in response to nachtjenevel
    Level 1 (9 points)
    iPhone
    Jun 21, 2016 8:58 AM in response to nachtjenevel

    Exactly the same behavior on my both iPads. Swiping right without entering any password has worked.

  • by BBoiss,Apple recommended

    BBoiss BBoiss Jun 21, 2016 8:57 AM in response to nachtjenevel
    Level 4 (1,404 points)
    Apple Music
    Jun 21, 2016 8:57 AM in response to nachtjenevel

    Glad you got your account back. If you have not already setup your account with the advanced security options that Apple offers, I suggest looking into Two-Factor Authentication. What was essentially hacked was not specifically your hardware, but your iCloud account. You were right to update this.

     

    Two-factor authentication for Apple ID - Apple Support

     

    Also be wary of phishing emails as this is one of the most common ways for attackers to learn your login information. If you visit https://iforgot.apple.com/ and follow the prompts to reset your Apple ID password, you will learn that a standard account uses date of birth and security questions as protection. If someone learns these things, your account is no longer secure. The majority of time, these details are learned through phishing attempts through email, text message, or even just searching for the information online about a person on Facebook for example.

     

    Identifying fraudulent "phishing" email - Apple Support

  • by inanity,

    inanity inanity Jun 21, 2016 10:52 AM in response to nachtjenevel
    Level 1 (4 points)
    Jun 21, 2016 10:52 AM in response to nachtjenevel

    mine was hacked as well today in the same way!

    i am from austria. only a recovery helped!

    more and more entries in forums occured about this topic in the last hours.

    it seems that those hackers were very successful!

    apple should find this security leak!!!

  • by Mww101,

    Mww101 Mww101 Jun 21, 2016 2:19 PM in response to nachtjenevel
    Level 1 (4 points)
    Jun 21, 2016 2:19 PM in response to nachtjenevel

    Mine too, about the same time, same email.

     

    I've never fallen for a phishing email (almost been caught out once!) but do use my password in a few different places, I'm guessing the password was taken from one of the "leaks" of recent times (LinkedIn etc . . . .)

  • by BBoiss,

    BBoiss BBoiss Jun 21, 2016 2:27 PM in response to Mww101
    Level 4 (1,404 points)
    Apple Music
    Jun 21, 2016 2:27 PM in response to Mww101

    Mww101 wrote:

     

    Mine too, about the same time, same email.

     

    I've never fallen for a phishing email (almost been caught out once!) but do use my password in a few different places, I'm guessing the password was taken from one of the "leaks" of recent times (LinkedIn etc . . . .)

    You bring up an excellent examination regarding the use of the same or similar password in more than one location. This goes back to more common attack methods.  When you login to Facebook,LinkedIn, or your Apple ID, you do so with an email account and a password. If you were to find out the login information for one service, you could then attempt that same login information for other commonly used services such as an Apple ID and see if it works there as well.

  • by Mww101,

    Mww101 Mww101 Jun 21, 2016 2:31 PM in response to BBoiss
    Level 1 (4 points)
    Jun 21, 2016 2:31 PM in response to BBoiss

    I have always feared that it might happen due to the number of big leaks recently but only changed several "important" passwords. I guess I never considered my Apple ID an important one . . . until now!

  • by Jer102,

    Jer102 Jer102 Jun 21, 2016 6:53 PM in response to nachtjenevel
    Level 1 (4 points)
    Jun 21, 2016 6:53 PM in response to nachtjenevel

    The same happened to me this morning, both my iPad Air 2 and my 6s had the same lost mode activated. I went through and just tapped in my passcode and then changed my iCloud password.

     

    The really worrying thing is that I already had 2 factor authorisation turned on, so I'm really confused as to how this happened in the first place.

     

    Still - worst hacker ever - easy to circumvent.

  • by nhampd,

    nhampd nhampd Jun 21, 2016 7:05 PM in response to nachtjenevel
    Level 1 (4 points)
    Jun 21, 2016 7:05 PM in response to nachtjenevel

    My iPhone 6 also was hacked this morning by

    I woke up and discovered that I'm completely locked out of my phone this morning.

     

    I finding reason is hacker go to Icloud then active lost Iphone function


    So i go to iclound and reset password, and go to FInd to Iphone, Open my phone to deative lost iphone function, but it's offline.

    But my iphone before go to network by wifi normal, when hacker active lost iphone function, seem my iphone not connect wifi so i not active my iphone

     

    What should I do?

  • by inanity,

    inanity inanity Jun 23, 2016 2:40 AM in response to nachtjenevel
    Level 1 (4 points)
    Jun 23, 2016 2:40 AM in response to nachtjenevel

    sorry to bother the people in this thread. but, are women here? did anybody of you use the periode tracker app of masahiro kato when the hackers got into your phones? i might see a connection to it. looking forward to your answers!