How This Scam Works
1
Attacker obtains your email/password from a data breach, phishing email, or password reuse across sites.
2
They log into your Google, iCloud, or Microsoft account using the stolen credentials.
3
They access your emails, photos, documents, contacts, and location history. They may set up mail forwarding rules.
4
The attacker changes your password, recovery options, and 2FA settings, locking you out. They may demand ransom or use your account for further scams.
Warning Signs
Emails about account security that ask you to click a link to sign in
Unexpected password reset emails you did not request
Notifications of sign-ins from devices or locations you do not recognize
Friends or contacts receiving emails from you that you did not send
Being locked out of your own account
Real Examples
""
""
How to Protect Yourself
Enable two-factor authentication on all cloud accounts
Use unique, strong passwords for Google, Apple, and Microsoft accounts
Review account activity regularly (Google: myaccount.google.com/security)
Never click 'sign in' links from emails — type the URL directly
Set up recovery phone numbers and backup email addresses
Use a password manager to generate and store unique passwords
Frequently Asked Questions
Help Protect Others
Share this scam report to warn friends and family.