New FaceTime Scam Targets Bank Customers in Sophisticated Fraud Scheme
Scammers are increasingly exploiting Apple’s FaceTime video calling app to impersonate bank representatives and drain victims’ accounts. According to CBS News consumer correspondent Ash-Har Quraishi, the fraud begins with a deceptive text message or direct call, alerting victims to supposed suspicious account activity. Victims are then instructed to verify their identity by calling a provided number or engaging with the scammer directly.
Once connected, the fraudster persuades the victim to switch from an audio call to FaceTime, where they request screen-sharing access. This allows scammers to observe in real time as victims log into their online banking accounts, capturing passwords, account numbers, and one-time security codes.
Apple acknowledges that scammers leverage FaceTime due to its perceived trustworthiness but advises users to remain cautious. If a suspicious FaceTime call is received particularly from someone claiming to be a bank representative users are encouraged to take a screenshot by tapping the "info" button, selecting "take live photo," and sending the image to reportfacetimefraud@apple.com for investigation.
The scam highlights the growing sophistication of social engineering tactics, where attackers exploit trusted platforms to bypass security measures. Financial institutions and consumers alike are urged to stay alert as this fraud method continues to spread.
Source: https://www.cbsnews.com/news/facetime-bank-account-scam/
Apple TPRM report: https://www.rankiteo.com/company/apple
"id": "app1784067833",
"linkid": "apple",
"type": "Cyber Attack",
"date": "7/2026",
"severity": "60",
"impact": "2",
"explanation": "Attack limited on finance or reputation"
{'affected_entities': [{'customers_affected': 'Bank customers',
'industry': 'Banking / Financial Services',
'type': 'Financial Institutions / Banks'},
{'customers_affected': 'FaceTime users',
'industry': 'Technology',
'name': 'Apple',
'type': 'Technology Company'}],
'attack_vector': 'FaceTime video calls, text messages, direct calls',
'customer_advisories': 'Users are encouraged to take a screenshot of '
'suspicious FaceTime calls and report them to '
'*reportfacetimefraud@apple.com*. Avoid sharing '
'sensitive information or screen-sharing access with '
'unsolicited callers.',
'data_breach': {'data_exfiltration': 'Yes (real-time observation via '
'screen-sharing)',
'personally_identifiable_information': 'Yes',
'sensitivity_of_data': 'High (Personally Identifiable '
'Information, Financial Data)',
'type_of_data_compromised': 'Login credentials, account '
'numbers, one-time security '
'codes'},
'description': 'Scammers are increasingly exploiting Apple’s FaceTime video '
'calling app to impersonate bank representatives and drain '
'victims’ accounts. The fraud begins with a deceptive text '
'message or direct call, alerting victims to supposed '
'suspicious account activity. Victims are instructed to verify '
'their identity by calling a provided number or engaging with '
'the scammer directly. Once connected, the fraudster persuades '
'the victim to switch to FaceTime and request screen-sharing '
'access, allowing scammers to observe login credentials, '
'account numbers, and one-time security codes in real time.',
'impact': {'brand_reputation_impact': 'Potential erosion of trust in banks '
'and FaceTime',
'data_compromised': 'Passwords, account numbers, one-time security '
'codes',
'financial_loss': "Drained victims' accounts",
'identity_theft_risk': 'High',
'payment_information_risk': 'High'},
'initial_access_broker': {'entry_point': 'Deceptive text messages or direct '
'calls',
'high_value_targets': 'Bank customers'},
'lessons_learned': 'The incident highlights the growing sophistication of '
'social engineering tactics, where attackers exploit '
'trusted platforms to bypass security measures. Users must '
'remain cautious when receiving unsolicited '
'communications, even from seemingly legitimate sources.',
'motivation': 'Financial gain',
'post_incident_analysis': {'corrective_actions': 'Enhanced user education, '
'stricter verification '
'processes for bank '
'representatives, and '
'improved reporting '
'mechanisms for fraudulent '
'activity.',
'root_causes': 'Exploitation of user trust in '
'FaceTime, lack of awareness about '
'social engineering tactics, and '
'real-time screen-sharing access to '
'capture sensitive data.'},
'recommendations': 'Financial institutions and consumers should enhance '
'awareness of social engineering scams, avoid sharing '
'sensitive information via unsolicited calls, and report '
'suspicious activity to the relevant authorities or '
'platforms (e.g., Apple). Banks should also implement '
'multi-factor authentication and educate customers on '
'recognizing fraud attempts.',
'references': [{'source': 'CBS News'}],
'response': {'communication_strategy': 'Public advisories to raise awareness '
'about the scam',
'containment_measures': 'Apple advises users to report '
'fraudulent FaceTime calls by taking a '
'screenshot and sending it to '
'*reportfacetimefraud@apple.com*'},
'stakeholder_advisories': 'Financial institutions and consumers are urged to '
'stay alert as this fraud method continues to '
'spread.',
'threat_actor': 'Scammers / Fraudsters',
'title': 'New FaceTime Scam Targets Bank Customers in Sophisticated Fraud '
'Scheme',
'type': 'Social Engineering / Phishing Scam',
'vulnerability_exploited': 'Lack of user awareness, perceived trustworthiness '
'of FaceTime, screen-sharing access'}