iPhone users have been warned of a new type of phishing scam that tricks you into giving away your Apple ID.

IPhone的用户请注意，日前出现一种新骗局，会导致您泄露个人的Apple ID。

Phishing scam：网络钓鱼；钓鱼骗术

Give away：放弃；泄露；分发；出卖；赠送

Malicious iOS apps can easily create fake login pop-ups that look exactly like the ones used by Apple, an expert cautioned.

专家警告，恶意的iOS应用程序可以轻松创建仿苹果的假登录弹出窗口，这些弹出窗口看起来与Apple所使用的一样。

Malicious：怀有恶意的；恶毒的

Caution：谨慎；小心；慎重；告诫

The login boxes usually appear when you try to install or update an app, and ask you to enter your Apple ID password before you can continue.

当您尝试安装或更新应用程序时，通常会出现登录框，并要求您输入您的Apple ID密码，然后才能继续后面的操作。

Login box：登陆框

If you input your password into one of the fake boxes, the attacker could steal it and use it to access your credit card information, the MailOnline reported.

据报道，如果你在这个假的登录框中输入密码，攻击者就可以窃取，然后用该密码来访问您的信用卡信息。

Access：进入；到达；获得或储存(电脑文件)

Mobile app developer Felix Krause, based in Vienna, Austria, published a proof-of-concept on his blog on Tuesday that showed how easy it is to copy Apple's 'Sign In to iTunes Store' prompt to take a user's password.

移动应用程序开发人员Felix Krause周二在他的博客上发表了一个概念验证文章，显示复制苹果的“登录到iTunes商店 用户输入密码”的提示框是多么容易。

Prompt：提示；提示符

Mr Krause said malicious developers can turn on alerts inside their apps that look almost identical to Apple's pop-ups using a simple bit of code.

Krause表示，恶意开发人员可以使用简单的代码，在他们的应用程序中启用与Apple的弹出窗口几乎相同的提示。

Identical：完全同样的；相同的；同一的

'Users are trained to just enter their Apple ID password whenever iOS prompts you to do so,' Mr Krause wrote in his post.

"However, those popups are not only shown on the lock screen, and the home screen, but also inside random apps, e.g. when they want to access iCloud, GameCenter or In-App-Purchases. This could easily be abused by any app."

Krause在他的文章中写道：“只要iOS提示你这么做，用户就会输入他们的苹果ID密码。但是，这些弹出式窗口不仅显示在锁定屏幕、主屏幕上，还可以在随机应用程序中显示，例如，当他们想访问iCloud，GameCenter或In-App-Purchase时，也会出现该弹出窗口，这很容易被任何应用程序滥用。”

Random：随机的；任意的

左边是真的，右边是假的，看起来是不是几乎一样？图片来源 Felix Krause

Hackers who access your Apple ID password could make fraudulent purchases and potentially steal your payment information.

访问您的Apple ID密码的黑客可能会进行欺诈性购买，并可能窃取您的付款信息。

Fraudulent：欺骗的；欺诈的

If you use your Apple ID password elsewhere, like your online banking service, cyber criminals could use it to crack your accounts.

如果您在其他地方使用你的苹果账号密码，比如您的网上银行服务，网络罪犯就可以用它来破解你的账户。

Cyber criminals：网络罪犯

Crack：断裂；破裂；打击；崩溃

You can protect yourself from the fake pop-up scam by never inputting passwords into an Apple pop-up.

Instead, Mr Krause said, you should go into your iPhone's settings menu and enter it there to confirm it's a real request from Apple.

您可以通过永远不要在Apple弹出窗口中输入密码，从而来保护自己免受假弹出式登录窗口的诈骗。Krause建议，您应该进入您的iPhone设置菜单，以确认该窗口是否来自苹果的真实请求。

Input：输入

Confirm：确认

Krause说，最安全的方法是在设置里输入密码。图片来源 Felix Krause

You can also click the home button whenever a pop-up is shown.

Mr Krause said this will close the app if it is a phishing scam, but the pop-up will remain if it is a legitimate Apple ID request.

当弹出窗口显示时，您也可以单击主页按钮。Krause表示，如果它是网络钓鱼欺诈，您单击主页后将关闭该应用程序，但如果这是一个合法的苹果ID请求，该弹出式窗口仍将继续存在页面上。

Legitimate：合法的；正当的；合理的；正统的

You should also always have two-factor authentication activated on your Apple account for an extra layer of security.

您还应该在苹果账户上激活双重身份验证，以获得额外的安全保障。

Authentication：认证；鉴定

Activate：激活；使活动；使活化

记得复习：

【读新闻学英语】电影大亨被曝性侵多名女星 其妻子宣布分手！

【读新闻学英语】同车厢有个熊孩子！天使小哥哥告诉你该怎么做

【读新闻学英语】妹子们还敢在网上晒照片吗？小心遇到这样的变态哦！

(责编：Twinkle)

来源 - 新西兰先驱报中文网