Ok, this is going to require a fix.
Following a discovery last week wherein Pod2G uncovered a SMS flaw in iOS that lets someone send a spoofed SMS (in this scenario, the SMS would appear to be from a trusted source, but the response would actually be sent to someone else), the cool cats at Engadget reached out to Apple for comment and received the following reply:
“Apple takes security very seriously. When using iMessage instead of SMS, addresses are verified which protects against these kinds of spoofing attacks. One of the limitations of SMS is that it allows messages to be sent with spoofed addresses to any phone, so we urge customers to be extremely careful if they’re directed to an unknown website or address over SMS.”
Stay tuned for additional details as they become available and with any luck, a fix should be en route soon.