The "Locket Gold upgrade" scam is a sophisticated form of online extortion that exploits users' gullibility and lack of understanding of security procedures. Users need to be vigilant and only use services from legitimate sources to protect their personal information and assets.
Sophisticated scams
Locket is a popular app that allows users to share images directly to their friends' home screens as a widget. Taking advantage of this popularity, scammers have been advertising cheap "Locket Gold" packages on social media, luring users with prices ranging from just 5,000 to 40,000 VND.
Social media is flooded with posts offering to sell Locket Gold. (Photo: Tien Phong)
After users purchase the upgrade package, they are asked to log in to a different iCloud account instead of the App Store to use Locket Gold. The scammers then lock the iCloud account the victim is logged into, preventing the victim from accessing and using their device. To regain access, the victim is forced to pay the scammers extra money to unlock the iCloud account.
Being locked out of iCloud not only causes users to lose control of their devices but also puts them at risk of having their personal and financial data stolen. Scammers can access all the information stored in their iCloud accounts, including photos, videos , messages, emails, contacts, passwords, and other sensitive data.
A female student named T (Cau Giay, Hanoi ) said she transferred 60,000 VND to buy "Locket Gold for permanent use," but just a few minutes later, her phone was completely locked. The scammer demanded she transfer nearly 10 million VND to unlock it. This money was originally from her mother's tuition fees.
A male student in Hanoi shared on a forum: "I thought it would only cost 50,000 VND to try Locket Gold, but unexpectedly my device was locked and they demanded 8 million VND to unlock iCloud."
Recommendations for users
Mr. Vu Ngoc Son, Head of the Technology Committee of the National Cybersecurity Association, stated that, according to Apple's design, the person holding the iCloud account is the legal owner of the device. Therefore, when this account falls into the wrong hands, they can remotely lock the device, and at that point, the user has almost no way to unlock it. Using tricks to unlock iCloud also carries many risks.
Mr. Son also noted that users need to be extremely wary of offers to upgrade applications at unusually low prices. In particular, they should absolutely not log into a stranger's iCloud account on their device to avoid the risk of losing control, financial loss, and personal data theft.
An Apple representative in Vietnam confirmed: "Locket Gold is not pre-installed via iCloud account. All app upgrades must be done through the App Store."
Cybersecurity agencies have received several complaints related to this type of fraud. In cases of fraud or when detecting signs of fraud, users should report it to the authorities for guidance on tracing the perpetrators, legal support, and timely prevention.
Speaking with a reporter from Tri Thuc va Cuoc Song newspaper , lawyer Nguyen Ngoc Hung - Head of Ket Noi Law Office (Hanoi Bar Association) said that this is a completely new and sophisticated tactic, and iPhone users are currently a prime target for high-tech criminals. The act of stealing iCloud accounts, disabling iPhones, and then demanding ransom to unlock them is not just a common violation of the law, but could constitute a serious crime under the Vietnamese Penal Code. According to Clause 1, Article 3 of Decree 25/2014/ND-CP, crimes using high technology are socially dangerous acts stipulated in the Penal Code that utilize high technology. High-tech crimes are currently classified under the group of crimes in the field of information technology and telecommunications networks from Articles 285 to 294 of the 2015 Penal Code (amended and supplemented in 2017).
Lawyer Nguyen Ngoc Hung - Head of Ket Noi Law Office (Hanoi Bar Association).
Specifically, according to Article 289 of the Penal Code on the crime of illegally accessing another person's computer network, telecommunications network, or electronic device, anyone who intentionally bypasses warnings, access codes, firewalls, uses another person's administrative privileges, or uses other methods to illegally access another person's computer network, telecommunications network, or electronic device to gain control; interferes with the operation of the electronic device; steals, alters, destroys, falsifies data, or illegally uses services will be fined from VND 50,000,000 to VND 300,000,000 or imprisoned from 1 year to a maximum of 12 years. The offender may also be fined from VND 5,000,000 to VND 50,000,000, prohibited from holding office, practicing a profession, or performing certain work for 1 to 5 years.
Article 290 of the 2015 Penal Code (amended and supplemented in 2017) stipulates that the crime of using computer networks, telecommunication networks, or electronic means to commit acts of property appropriation may be punishable by non-custodial correctional measures for up to 3 years or imprisonment from 6 months to 20 years. In addition, offenders may also be fined from VND 20,000,000 to VND 100,000,000, prohibited from holding office, prohibited from practicing a profession or performing a specific job for 1 to 5 years, or have part or all of their property confiscated.
Furthermore, Decree 25/2014/ND-CP also defines other high-tech violations as acts of law violation using high technology but not yet reaching the level of criminal prosecution. Those who violate regulations on using the internet to misappropriate property may be subject to administrative penalties under Article 81 of Decree 15/2020/ND-CP ranging from VND 30,000,000 to VND 100,000,000. In addition to the fine, violators may also be subject to supplementary penalties such as confiscation of evidence and means used in the administrative violation for the act of violating the regulations in Clause 2, Article 81 of Decree 15/2020/ND-CP.
Therefore, regarding the theft of iCloud accounts, which results in the iPhone being disabled and the perpetrator demanding ransom to unlock it, the penalties and sanctions will vary depending on the specific actions, nature, extent, and circumstances of the crime.
Recovering ransom money after it has been transferred to the perpetrators is often difficult because transactions mainly take place through virtual accounts and e-wallets with unclear user identities. Criminals often use fake information, operate across borders, or change their identities immediately after receiving the money to avoid detection. However, if the victim promptly reports to the police and provides sufficient evidence such as transfer history, demand messages, and phishing emails, the investigating agency can trace and verify the origin of these funds. In some special cases, thanks to professional methods, authorities can recover some of the stolen assets, helping to limit losses for the victim. Therefore, victims in such cases should report the incident immediately to the police for assistance and legal action.
Common mistakes users often make:
Being naive and trusting of offers to receive gifts or money through apps or suspicious links, especially when shared by acquaintances (which may have been hacked).
Logging into an unfamiliar app with your Apple ID (iCloud) is extremely dangerous because criminals can use the Find My iPhone feature to remotely lock your device and demand a ransom (ransomware).
Lack of basic security knowledge, such as two-factor authentication (2FA) or checking the origin of applications before installing them.
How to protect yourself:
Never log in with your Apple ID to any app from an unknown source.
Always enable two-factor authentication (2FA) for your Apple, Gmail, Facebook, and other accounts to enhance security.
Do not install apps via suspicious links – only download from the official App Store or Google Play.
Be wary of offers to win prizes, receive money, or get unexpected gifts on social media or in private messages.
Additionally, users can enhance their online safety knowledge through nca.org.vn and chongluadao.vn – websites that provide tools to check phishing links and offer early warnings about spreading scams.
According to cybersecurity expert Ngo Minh Hieu
Source: https://khoahocdoisong.vn/chieu-lua-nang-cap-locket-gold-mat-icloud-mat-luon-ca-tien-post1545373.html
![[Infographic] How have gasoline and diesel prices increased across the board since the Lunar New Year?](https://vphoto.vietnam.vn/thumb/402x226/vietnam/resource/IMAGE/2026/03/07/1772891457083_anh_thumbnail_bien_dong_gia_xang_dau_20260307191647.jpeg)
Comment (0)