MetaMask Issues Warning Following $650K iCloud Phishing Scam

The DeFi wallet is advising users to disable iCloud backups to prevent future scams

April 18, 2022 05:10 pm

Source: Shutterstock

key takeaways

The wallet app is asking users to disable iCloud backups for MetaMask by going into Settings > Profile > iCloud > Manage Storage > Backups
MetaMask’s response has drawn criticism from community members

Crypto wallet MetaMask issued a warning advising users to disable their iCloud backups following an exploit of Apple’s service in an estimated $650,000 phishing scam.

Newsletter

Subscribe to Blockworks Daily

The DeFi wallet provider said Sunday users who have iCloud enabled for iPhone application data were susceptible to hackers because the backups include their password-encrypted MetaMask vault.

“If your password isn’t strong enough and someone phishes your iCloud credentials, this can mean stolen funds,” MetaMask tweeted.

The company did not immediately return a request for comment.

In one such phishing attack, hackers drained an estimated $650,000 from NFT investor Domenic Iacovone’s OpenSea account, including several Mutant Ape Yacht Club collectibles, on April 14.

Loading Tweet..

“Got a phone call from Apple, literally from Apple (on my caller Id) called it back because I suspected fraud and it was an Apple number,” Iacovone tweeted. “So I believed them, they asked for a code that was sent to my phone and two seconds later my entire MetaMask was wiped.”

MetaMask’s response has drawn criticism from community members who argue the backup feature used in iCloud should either be disabled or made tougher for hackers seeking a way into users’ digital wallets.

Loading Tweet..

MetaMask parent ConsenSys in February said it was looking to leverage NFTs (non-fungible tokens) as a means to onboard more users to its digital wallet while building out a white-label NFT platform.

While efforts are being made on that front, critics argue cases like Iacovone’s demonstrate ConsenSys’ need to improve security if it aims to bring on the “next wave” of wallet users.

Get the news in your inbox. Explore Blockworks newsletters:

Blockworks Daily: Unpacking crypto and the markets.
Empire: Crypto news and analysis to start your day.
Forward Guidance: The intersection of crypto, macro and policy.
0xResearch: Alpha directly in your inbox.
Lightspeed: All things Solana.
The Drop: Apps, games, memes and more.
Supply Shock: Bitcoin, bitcoin, bitcoin.

Tags

Newsletter

Blockworks Daily

Upcoming Events

Digital Asset Summit 2025

Old Billingsgate

Mon - Wed, October 13 - 15, 2025

Blockworks’ Digital Asset Summit (DAS) will feature conversations between the builders, allocators, and legislators who will shape the trajectory of the digital asset ecosystem in the US and abroad.

buy tickets learn more

Permissionless IV

Industry City | Brooklyn, NY

TUES - THURS, JUNE 24 - 26, 2025

Permissionless IV serves as the definitive gathering for crypto’s technical founders, developers, and builders to come together and create the future.If you’re ready to shape the future of crypto, Permissionless IV is where it happens.

buy tickets learn more

Permissionless IV Hackathon

Brooklyn, NY

SUN - MON, JUN. 22 - 23, 2025

Blockworks and Cracked Labs are teaming up for the third installment of the Permissionless Hackathon, happening June 22–23, 2025 in Brooklyn, NY. This is a 36-hour IRL builder sprint where developers, designers, and creatives ship real projects solving real problems across […]

learn more

recent research