Apple iPhone users have been told to beware of cybercriminals that are trying to trick people into giving their Apple ID username and password.
Crooks can then use the Apple ID credentials to login to iTunes and the App Store to make purchases.
The phishing scam was outlined in a Reddit thread, and tech website BGR has also received a number of e-mails from concerned iPhone owners.
The scam begins after Apple iPhone users are sent an SMS warning them that their ‘iPhoneID’ is about to expire.
They are told to click a link to “prevent loss of services and apps” and then they are asked to input their login details.
But, as many of iPhone fans are aware, the first telltale sign the message is a scam is that there’s no such thing as an iPhoneID.
It must be noted, Apple would never ask users to enter login details on non-Apple websites and have advised people to be aware phasing scams.
The message is sent via SMS, but the caller ID appears as “iMessage”, and it appears in grey.
Seeing as incoming texts and iMesssages both appear in grey in Apple’s Messages app, it’s easy to mistake the message for a genuine alert.
Once a user clicks on the link, they’re asked to login with their Apple ID.
If the details are entered, the login information is saved by the cybercriminals.
This could then be used by crooks to steal private data or gain control of a user’s account and demand a ransom.
Apple have previously strongly advised users to be aware of phishing scams and to have alarming bells ringing if they get asked for their password.
In an official support post, Apple said: “If you see a message while browsing the web that your iPhone, Mac, or other Apple device has a virus, or someone claiming to be from Apple calls and asks for your account name and password, you’re likely the target of a scam.
“Scammers use any means they can—fake emails, pop-up ads, text messages, even phone calls—to try to trick you into sharing personal information, such as your Apple ID password or credit card information.”
They added: “Never share your Apple ID password or temporary verification codes with anyone.
“Apple will never ask you for this information to provide support.
“Use two-factor authentication to protect your Apple ID.
“If you believe that your Apple ID has been compromised, change your password immediately.”
The news comes after earlier Express.co.uk revealed that cybercriminals could infect an iPhone by sending a single song to play.
In April it emerged that Apple iPhone users needed to be aware of a terrifying new hack.
The vulnerability allowed hackers to use audio files to execute malicious code on your Apple device.
The malware would be hidden inside the media file, which would then automatically execute whenever the song was played on your smartphone or tablet.
An anonymous hacker, working in collaboration with the Zero Day Initiative, disclosed two bugs within iOS that would allow malicious code to run as soon as an audio file was played on an Apple smartphone.
The latest hack affected iOS, watchOS and tvOS, the operating system that powers the latest generation of Apple TV.
As soon as the malware-laced audio file was opened on your iPhone, the dangerous, hidden malicious code could execute.
But Apple quickly quashed these vulnerabilities in the 10.3 version of iOS.
If you haven’t updated your device recently, simply head to Settings > General > Software Update to make sure your Apple device is protected against the hack.