Ransomware is not uncommon on Windows machines, but has so far only been seen once on Macs and not at all on non-jailbroken iOS devices. However, Dutch site AppleTips reports that hackers are trying to fool people into thinking their devices have been compromised after gaining access to an Apple ID.
Hackers use Find My iPhone to lock the phone, displaying a message demanding a ransom for access.
This device is locked. Unlock 50$. Email for details: firstname.lastname@example.org
While 9to5Mac readers would be unlikely to fall for this, recognizing it as a lock message that can be cleared simply by using the phone’s normal passcode, technically naive users might be fooled.
The attack requires someone to have compromised the Apple ID associated with the device, but again non-tech users tend to re-use passwords and not use two-factor authentication, so it would only require an unrelated website to be hacked to gain access to credentials that also serve as Apple ID logins.
As ever, the best protection is to use strong, unique passwords for every website and use two-factor authentication for your Apple account.