Watch out for this new fraud. To gain access to your Apple, Amazon, or Meta account information, they pose as emergency services.
Major technology companies handle vast amounts of personal information belonging to millions of people. Therefore, when these companies are targeted by cyberattacks, the problem extends beyond the company itself to include users and society as a whole. Data theft can lead to fraud, identity theft, and other forms of scams that ultimately affect everyone who uses their services.
Giant companies like Apple, Amazon, and Meta have been waging a fierce battle against cyberattacks of all kinds for years; however, they have recently detected a very worrying threat, which is a method that enables attackers to steal users’ personal data in record time.
This method relies on exploiting an existing legal framework for emergencies. According to Wired magazine, in some countries, authorities have the right to request urgent information from technology companies without a court order if there is an immediate threat to someone.
This tactic is known as an "emergency data request," where attackers impersonate authorities, claiming a serious emergency. This is done by sending fake emails or using compromised accounts and attaching forged legal documents. In some cases, they even attach fabricated death notices to pressure the company into taking immediate action.
Because of the sense of urgency created by this scam, some companies may fall victim and disclose personal data such as addresses, phone numbers, and other confidential information belonging to users, believing it will help in a genuine situation. Regardless of the type of scam, the goal remains the same: to create panic so that no one verifies its legitimacy.
Media reports indicate that cybercriminals themselves admit this method enabled them to obtain thousands of personal data points. They can then sell this data on illegal forums and use it to carry out more sophisticated scams. Users have little recourse against these types of attacks, and it is the tech companies, which have yet to comment, that need to improve their systems.