‘Act quickly’ if you receive ‘innocent’ text on iPhone or Android that actually means you’re a hack target, experts warn
ANDROID and iPhone users should think twice if they receive a seemingly innocuous text, as it could signal a cyberattack.
Some sites use one-time password codes, which provide an additional layer of authentication before users sign into their accounts.
Google, for instance, may send a security code over text to confirm your identity. You can only use it once and it will expire after a few minutes.
However, if you didn’t request a code, this could mean a malicious actor is trying to get access to your accounts.
An unsolicited OTP code might indicate your account has been compromised.
A hacker might know your username and password or only some credentials, leading the site to detect suspicious activity on your account.
If you receive a surprise OTP code, quickly change the password for that account.
The code might also be part of a larger effort like a phishing scam in which cybercriminals deceive their targets into clicking a link or attachment.
This link could lead to a spoofed website that asks for your login credentials, revealing them to the hacker.
However, an OTP code could be a sign of an honest mistake.
Another user might believe they’re signing into their own account if they have a similar username only a few letters or numbers apart.
This is most likely for platforms that only ask for a username and OTP code to sign in.
However, you’re better safe than sorry – and there are easy ways to stop your information from falling into the wrong hands.
Consider using a password manager, which can generate and store strong passwords.
While 12 characters were once considered sufficient, experts now say a secure password should be 16 or more and use a healthy mix of numbers, letters, and special characters.
You could also set up an additional form of authentication on accounts that allow it.
The most secure option is biometric technology, which relies on unique identifiers like a fingerprint or facial scan.
As an OTP code is intended to provide another layer of security, refrain from sharing it with anyone.
If someone calls or texts you asking for an OTP code, do not give it to them, as this will provide unobstructed access to your account.
How to keep your iPhone safe
While Apple’s iPhone Operating System has a reputation of being safe, you could always take steps to be even safer. Here’s what Mackenzie Tatananni, Science and Technology Reporter at The U.S. Sun, has to say.
One of the easiest ways to avoid being hacked is to download the latest software updates, which usually contain patches to fix vulnerabilities.
You can also keep your iPhone up to date with the most recent software by turning on automatic updates.
When searching for software, apps, or really anything to download onto your iPhone, only look to trusted sources.
The official App Store is just one example – applications in there have all been vetted by Apple as opposed to those from a third-party source.
You should also exercise caution when downloading text or email attachments.
Do not click on suspicious attachments or links if you haven’t confirmed where they come from.
They can inject malware onto your phone or nab your personal information under the guise of being from a trusted source, like a bank or employer.
To take steps to protect your data from interception, refrain from connecting to public WiFi networks.
If you must, be sure to use a Virtual Private Network, or VPN – there are tons of options in the App Store.
It is also important to stay vigilant and monitor your accounts for other signs they have been breached.
If you received an OTP code for your bank account, for instance, keep an eye out for unusual activity.
These could include unfamiliar transactions or purchases, large transfers of money, or changes to your credit score.