DeFi wallet advises users to disable iCloud back-ups to avoid future scams. Users are asked to disable iCloud backups of MetaMask in the wallet app by going into Settings > Profil > iCloud > Manage storage > Backups. MetaMask’s response to community members has been criticized.
MetaMask, a crypto wallet, issued a warning to users advising them to disable their iCloud back-ups after an Apple exploit in a $650,000 phishing scheme.
DeFi said that users with iCloud enabled iPhone app data were vulnerable to hackers Sunday because backups included their password-encrypted MetaMask vault.
“If your password doesn’t hold strong enough, and someone phishes you iCloud credentials,” MetaMask Tweet.
The company did not immediately respond to a request for comment.
One such phishing attack saw hackers drain $650,000 from Domenic Iacovone, a NFT investor,’s OpenSea Account, which included several Mutant Ape Yacht Club collectibles.
Iacovone tweeted: “I received a call from Apple. Literally from Apple (on the caller Id). I called it back because I suspected fraud, and it was an Apple phone number.” They asked me for a code and my entire MetaMask disappeared within seconds.
MetaMask’s response to community members has been criticized. They argue that hackers looking for access to digital wallets should be made more difficult or the backup feature in iCloud should be disabled.
ConsenSys, MetaMask’s parent company, stated in February that it was considering leverage NFTs to increase its user base and build a white-label NFT platform.
Although there are efforts being made to address this issue, critics claim that cases such as Iacovone’s show ConsenSys’ need for security improvements if it wants to attract the next wave of wallet users.