Tim Cook's Apple iToken Ad Is A Con: X Users Warned
The latest threat to Apple users comes in the form of a cryptocurrency scam that's got everyone on high alert. The scammers behind this campaign have been using fake Tim Cook endorsements and even spoofing a visible X advertising URL to try and trick potential victims into parting with their hard-earned cash.
Threat actors have been targeting Apple users for a long time, and it seems like they've upped their game with the latest attack. The scam involves an "official" release of the Apple iToken cryptocurrency, which promises to give its holders a head start on the market. But here's the thing: there is no such thing as the Apple iToken.
The scammers are using a fake Tim Cook endorsement to make it seem like this is the real deal. They're also using a URL that appears to be from CNN, complete with a known exploit for spoofing a URL on X/Twitter. This allows them to trick users into clicking on the ad and redirecting them to a website where they can create an account and pay for the non-existent crypto token.
The researchers at Silent Push have uncovered nearly 90 sites going back to 2024 with almost identical financial lures, all of which appear to be from the same threat actor group. They warn that this is a "novel method" for tricking potential victims, one that's rarely seen in the wild.
Apple fans and cryptocurrency investors are likely to be the target market for this scam. The scammers are using a social media platform popular among these groups – X, formerly Twitter – to spread the word about the fake Apple iToken. They're also using a crypto presale campaign to try and get victims to part with their cash.
But don't get taken in by these scammers! There is no Apple iToken, Tim Cook has not endorsed it, and CNN is not buying advertising promoting it. If you receive an ad like this or are contacted by someone claiming to be from Apple or the company behind the iToken, do not engage.
Instead, report any suspicious activity to X and Apple immediately. You can also help spread the word about this scam to protect your friends and family who may be vulnerable to it. Remember: if it sounds too good (or bad) to be true, it probably is.
Stay Safe Online
The latest macOS infostealer attacks have left 100 million Apple users at risk of having their credentials stolen. But this latest scam takes things a step further by targeting financial information and using fake endorsements to gain trust.
This is a reminder that online scams are becoming increasingly sophisticated, and it's up to us to stay vigilant. By reporting suspicious activity and spreading awareness about scams like this, we can all do our part to keep ourselves and others safe online.