It seems Apple might have a phishing problem on its hands with iOS. Recently developer Felix Krause posted proof of a phishing attack iOS developers could use to gain the Apple ID login credentials. As the screenshot shows, this comes in the form of a password request that looks almost if not identical to the one Apple uses.
According to Krause “Showing a dialog that looks just like a system popup is super easy, there is no magic or secret code involved, it’s literally the examples provided in the Apple docs, with a custom text.”
Krause also shares a tip on how to tell if it is a phishing attempt, and all users have to do is press the home button when they receive the popup. If it goes away and closes the app, then it is tied in with the app, but if it remains then it is a genuine iOS system request.