:

STOLEN IPHONES BECOME HACKING TOOLS FOR CRIMINALS

SECURITY DESK1 MIN READ
THU, MAY 14, 2026

■ AI-SUMMARIZED FROM 1 SOURCE ▸ TIMELINE

An underground market is supplying criminals with techniques to unlock stolen iPhones and launch phishing attacks against victims' contacts. The ecosystem targets bank accounts and sensitive data.

Thieves now have access to tools and methods that bypass iPhone security, enabling them to access device contents and impersonate owners through their contact lists. Once unlocked, criminals send phishing messages to the victim's contacts, posing as the device owner to trick recipients into revealing banking credentials and personal information. This two-stage attack multiplies the damage beyond the initial theft. The criminal ecosystem operates through forums and marketplaces where specialized services are traded. Some vendors offer device unlocking expertise, while others provide phishing templates or buyer lists compiled from previous victims. Apple's security features have made this process more difficult than in previous years, but determined attackers continue finding workarounds. The vulnerability highlights the danger posed by physical device theft in today's interconnected digital environment. Security experts recommend enabling two-factor authentication, marking devices as lost in iCloud immediately after theft, and warning contacts about potential phishing attempts.

■ SOURCES

Wired

■ SUMMARY WRITTEN BY AI FROM THE LINKS ABOVE

■ MORE FROM THE SECURITY DESK

The European Union has sanctioned members of Russia's Federal Security Service (FSB) for cyber espionage and sabotage campaigns targeting EU and Ukrainian entities since 2010. The move, coordinated with the UK, targets dozens of individuals and organizations involved in systematic hacking operations.

1H AGOAI Desk

Cybersecurity agencies from the United States and eight allied nations have issued a joint warning about Russian state-sponsored hackers targeting vulnerable routers to breach critical infrastructure networks.

1H AGOIndustry Desk

A new browser fingerprinting vector has emerged in Chromium 148, where the Math.tanh function produces different results across operating systems. This discrepancy can be exploited to identify a user's underlying OS without explicit permission.

14H AGOIndustry Desk

Kaseya is hosting a webinar on strengthening MSP resilience through SaaS backups and business continuity strategies. The session focuses on how recovery capabilities prove critical when security defenses are breached.

20H AGOSecurity Desk

■ SUBSCRIBE TO THE DAILY BRIEF

ONE EMAIL, 5 STORIES, 06:00 UTC. UNSUBSCRIBE ANYTIME.