iPhone Unlocking Black Market Exposed: 10,000+ Phishing Sites Linked to Cybercrime Services

The Scale of the Problem

Infoblox researchers have uncovered a sprawling network of cybercrime services offering tools to unlock stolen iPhones. This underground market has grown dramatically, with traffic to linked phishing websites increasing 350% in the past year alone.

The services include sophisticated software for bypassing device locks and technology designed to generate phishing messages aimed at stealing iCloud credentials.

How the Unlocking Market Works

Pay-Per-Use Tools

Dozens of criminal groups sell pay-per-use unlocking tools, primarily targeting iPhones, at an average cost below $10. These services cater to individuals handling small numbers of phones rather than large-scale operations.

"Reselling is a hundred percent what they're going for. Most of the people looking to unlock phones clearly don't have thousands of phones in their hands."
— Maël Le Touz, Infoblox

The Phishing Tactic

Scammers send fake Apple "Find My" pages that request the device's PIN, using this information to gain access to iCloud accounts. Reports from Switzerland and other countries confirm these phishing attempts often target owners of lost or stolen iPhones, leveraging device details visible on the lock screen to make messages appear legitimate.

The Economics of Stolen Phones

The market is driven by a stark price difference between locked and unlocked devices:

"But if you unlock it, it's worth $500, or it's worth $1,000."
— Dan Guido, Trail of Bits

Beyond the Handset: A Deeper Threat

The motivations behind phone theft extend far beyond the device itself.

"Phone thieves don't just want the handset—they want access to bank accounts and personal information."
— Will Lyne, Metropolitan Police

The criminal infrastructure identified by Infoblox facilitates this broader threat, enabling thieves to extract maximum value from stolen devices by both reselling the hardware and potentially accessing sensitive personal data.