Overview
- Apple announced Trust Insights at WWDC this week as a developer‑facing framework in iOS 27 to detect when a user may be falling victim to social engineering scams.
- The system analyzes behavioral signals such as interaction patterns, timing, context and basic sensor data on the device and does not inspect message, photo, or email contents.
- On‑device processing immediately discards raw signals and sends only a single risk output to Apple, which can be combined with Apple Account checks for a final assessment.
- When the framework assigns a medium or high risk, apps can present warnings, add delays, or require extra verification to interrupt transactions categorized as payment, account, resourceUse, communication, or other.
- Real‑world effectiveness depends on third‑party apps adopting the framework and on developer feedback and fraud reports so Apple can refine detection and reduce false positives.