Phishing Attacks Use This Simple Trick to Defeat iPhone Message Security

by

A new social engineering tactic is being used by cybercriminals to trick iPhone users into disabling iMessage's built-in phishing protection, in a bid to expose them to malicious links and scams, according to BleepingComputer.

General Apps Messages Redux
The scam exploits a security feature in iMessage that automatically disables links from unknown senders. Apple told the outlet that when users reply to these messages or add the sender to their contacts, the links become clickable – a behavior that scammers are now actively exploiting, according to the report. The deceptive messages often masquerade as notifications from trusted organizations like USPS or toll road authorities.

Scammers are apparently looking to exploit the familiar "reply STOP" or "reply NO" that often appears at the end of messages from authentic businesses or services, as there's been a surge in SMS phishing (smishing) attacks that specifically ask recipients to reply "Y" to "activate" supposedly legitimate links.

By getting users to respond, attackers not only enable the previously disabled links but also identify active phone numbers that are more likely to engage with future scams.

Tech-savvy users are likely to easily identify these as phishing attempts, but the main concern is that older or less experienced users will be particularly vulnerable to the tactic. Needless to say, the best way to ensure that you never fall for the scam is to never reply to suspicious messages from unknown senders.

phishing scam

SMS phishing attacks with disabled links (Image credit: BleepingComputer)

Another line of defense is to enable message filtering on your iPhone or iPad. Message filtering sorts messages from people who are not in your contacts into a separate list, where you can more easily view them in the Messages app. To filter messages from unknown senders, open Settings and go to Apps ➝ Messages, then toggle on the switch next to Filter Unknown Senders.

Bear in mind that the feature can filter legitimate messages – from couriers or your bank, for example – so don't automatically assume that a filtered message is dodgy. And, as mentioned above, you can't open links in a message from an unknown sender until you add them to your contacts or reply to the message, but that's by design.

Popular Stories

Low Cost MacBook Feature A18 Pro

Apple Is Expected to Launch These Four MacBooks in 2026

Friday January 9, 2026 8:17 am PST by
2026 could be a bumper year for Apple's Mac lineup, with the company expected to announce as many as four separate MacBook launches. Rumors suggest Apple will court both ends of the consumer spectrum, with more affordable options for students and feature-rich premium lines for users that seek the highest specifications from a laptop. Subscribe to the MacRumors YouTube channel for more videos. ...
Read Full Article114 comments
iPhone Top Left Hole Punch Face ID Feature Purple

10 Reasons to Wait for This Year's iPhone 18 Pro

Thursday January 8, 2026 2:56 am PST by
Apple's iPhone development roadmap runs several years into the future and the company is continually working with suppliers on several successive iPhone models at the same time, which is why we often get rumored features months ahead of launch. The iPhone 18 series is no different, and we already have a good idea of what to expect for the iPhone 18 Pro and iPhone 18 Pro Max. One thing worth...
Read Full Article75 comments
iOS 18 Siri Personal Context

Apple Confirms Google Gemini Will Power Next-Generation Siri This Year

Monday January 12, 2026 7:38 am PST by
In a statement shared with CNBC today, Apple confirmed that Google Gemini will power the next-generation version of Siri that is slated to launch later this year. "After careful evaluation, we determined that Google's technology provides the most capable foundation for Apple Foundation Models and we're excited about the innovative new experiences it will unlock for our users," the statement...
Read Full Article229 comments
iOS 18 Siri Personal Context

Elon Musk Reacts to Apple and Google Teaming on Gemini-Powered Siri

Monday January 12, 2026 11:38 am PST by
Elon Musk today expressed concern about Apple and Google partnering on a more personalized version of Siri powered by Google's generative AI platform Gemini. "This seems like an unreasonable concentration of power for Google, given that [they] also have Android and Chrome," wrote Musk, in a post on X. Musk serves as CEO of xAI, the company behind Gemini competitor Grok. It is unlikely...
Read Full Article145 comments
iOS 26

Here's What's New in iOS 26.3 So Far

Monday January 12, 2026 1:15 pm PST by
Apple today seeded the second beta of iOS 26.3, nearly a month after the first beta. So far, the update includes a couple of new features for iPhones. iOS 15.3 through iOS 18.3 were all released in late January over the years, so it is thereby likely that iOS 26.3 will be released towards the end of this month as well. The update is compatible with the iPhone 11 series and newer. Below,...
Read Full Article27 comments
proposed unicode emoji 18%402x

Squinting Face, Pickle, and Lighthouse Among New Emoji Coming to iOS

Friday January 9, 2026 4:24 am PST by
The Unicode Consortium has published a draft list of emoji that could come to smartphones and other devices in the future. The list shared by Emojipedia outlines 19 emoji candidates under consideration for Emoji 18.0, which is expected to be finalized in September 2026. Among the proposed additions are a squinting face emoji, left- and right-pointing thumb gestures, a pickle, a lighthouse, a ...
Read Full Article80 comments
apple homekit ios 18 5

Apple Reminding Users of Pending Home App Upgrade Requirement

Friday January 9, 2026 10:08 am PST by
Back in late 2022 and early 2023, Apple rolled out a new architecture for its Apple Home platform to deliver improved performance and compatibility, although the rollout came with some hiccups that forced Apple to pull and later re-release the upgrade. Three years later, Apple is now on the verge of ending support for the old version of the Home architecture, which may result in access to...
Read Full Article90 comments
Apple Intelligence iPhone 16

Google Gemini Partnership With Apple Will Go Beyond Siri Revamp

Monday January 12, 2026 8:48 am PST by
Apple and Google today announced that Google Gemini will help power not only a more personalized version of Siri, but a range of future Apple Intelligence features. "Apple and Google have entered into a multi-year collaboration under which the next generation of Apple Foundation Models will be based on Google's Gemini models and cloud technology," the companies said, in a statement. "These...
Read Full Article187 comments

Top Rated Comments

vertsix Avatar
vertsix
13 months ago
Why doesn't Apple use Apple Intelligence to detect and remove these things?

Genuine question, I know Apple Intelligence sucks at this time but I'm sure it can be easily trained to detect these samples?
Score: 27 Votes (Like | Disagree)
McWetty Avatar
McWetty
13 months ago
“iPhone users hate this one trick…” is the only way this article could be more clickbait. /s

Snark aside… I eliminated this spamming by removing all my personal data from data brokers. It took me an entire Saturday, but I managed to remove my email/phone/address from over 40 online sources and I haven’t gotten a single SMS spam since. Not even during the US election season.
Score: 9 Votes (Like | Disagree)
jayryco Avatar
jayryco
13 months ago
The faster we leave SMS behind the better.
I have had the same phone number for 20+ years and it must be part of an active list scammers use because at this point I receive phishing SMS's at least 2-3 times a week and regularly use TrueCaller to filter out this garbage.
Score: 6 Votes (Like | Disagree)
ignatius345 Avatar
ignatius345
13 months ago

I eliminated this spamming by removing all my personal data from data brokers. It took me an entire Saturday, but I managed to remove my email/phone/address from over 40 online sources
Would be very interested to hear specifics on how you (or anyone else) did this. Did you pay for some service that automates it, or manually go through and fill out forms? Thanks!
Score: 6 Votes (Like | Disagree)
spazzcat Avatar
spazzcat
13 months ago
Don't reply to messages from pepole you don't know or don't make any sense because they have no context.
Score: 5 Votes (Like | Disagree)
dynamojoe Avatar
dynamojoe
13 months ago
Can I just block all SMS from the Philippines?
Score: 4 Votes (Like | Disagree)
Read All Comments