iCloud scam – Misryoum warns iPhone users about phishing messages impersonating Apple and urging link clicks to “upgrade” iCloud storage.
A new wave of phishing messages is using fake iCloud alerts to lure iPhone users into clicking links, often under the warning that iCloud storage is suddenly full.
Misryoum says the scam is built around social engineering, using Apple-style branding and urgent language to make victims act quickly.. The messages typically arrive by text or email and mimic official notifications, pushing recipients toward an “upgrade” or “manage” prompt.. Instead of resolving storage issues, the links are designed to capture sensitive account details.
The “iCloud storage full” angle matters because it triggers real anxiety: people worry about photos, videos, or backups disappearing. That urgency is exactly what scammers rely on, turning a normal device notification into a trap.
Reports of the scam describe multiple variations.. Some emails use striking subjects meant to shock recipients. such as claims that an account has been blocked or that a payment method has expired.. Others are more subtle, warning that storage renewal has failed and suggesting a deadline for avoiding deletion.. In nearly all versions. the link leads to lookalike websites that aim to steal Apple ID credentials or payment information. and in some cases may trigger malware downloads.
Misryoum notes that these messages often look convincing because they are crafted to mirror how legitimate alerts typically read.. Scammers also exploit the fact that many users trust familiar logos. terminology. and familiar “account management” wording. which lowers resistance at the moment of decision.
To avoid falling for an iCloud scam, Misryoum recommends treating unsolicited alerts with caution.. Apple does warn users when iCloud storage runs low. but those notifications generally appear through the device’s settings or official system alerts.. Importantly, Apple does not ask users to share passwords or payment details through unexpected texts or unofficial webpages.. If you see a message you weren’t expecting. verify iCloud usage by opening your iPhone Settings and checking iCloud storage directly.
Misryoum also highlights common red flags used to spot phishing: sender details that don’t match the company they claim to represent. links whose addresses don’t align with the company’s real website. messages that look different from past communications. unexpected requests for personal information. and any unsolicited attachments.
If you suspect you’ve been targeted, Misryoum advises acting quickly by changing your Apple ID password and reviewing financial accounts for unusual activity. You can also report suspicious texts or emails by saving a screenshot and sending it to Apple’s phishing reporting channel.