iOS 27 introduces a new developer framework called Trust Insights that helps apps detect when a user may be getting scammed in real time. The feature is designed for one of the hardest fraud scenarios to stop: social engineering, where the user is not hacked but pressured, frightened, or coached into performing the risky action themselves.
That difference is central to the feature. A banking app can verify Face ID. A payment app can confirm the device is legitimate. A service can require two-factor authentication. None of those steps can reliably prove that the person is acting freely, especially when someone on a call or chat is guiding them through a transfer, password change, device authorization, account reset, or document submission.
Trust Insights gives apps a new behavioral signal for those moments. Instead of trying to read the user’s messages, listen to calls, or inspect private content, the framework uses privacy-preserving machine learning to help identify patterns that may suggest coercion or scam coaching.
A New Signal for Scam Pressure
Apple describes social engineering as an attack on people rather than systems. That makes it different from traditional app fraud, where attackers may use stolen credentials, modified apps, malware, bots, or fake devices. In a coached scam, the legitimate user is present, authenticated, and following instructions.
Those scams often follow familiar patterns. A fake support agent tells someone to grant remote access. A person pretending to be from a bank or government agency pushes for urgent account action. A fraudster claims a family member is in danger and asks for money. AI-generated voices and deepfakes make some of these attacks more convincing.
The hard part for apps is timing. By the time the bank, marketplace, crypto app, delivery platform, social network, or cloud service sees the outcome, the money may be gone, the account may be changed, or the data may be shared. Trust Insights is meant to help before the action becomes irreversible.
The framework gives developers a way to request an evaluation at sensitive points in the app flow. Apple’s developer session describes categories such as payments, account changes, resource use, communication, and other operations. A payment app might call Trust Insights before a large transfer. A cloud service might use it before a personal data export. A messaging or document app might use it before sending sensitive information.
The result is not a fraud verdict. It is a signal that can be used alongside an app’s existing risk system.
How Apps Can Respond
Trust Insights can return different levels of concern, including situations where the system sees some evidence of coaching or stronger evidence of coaching. Apple’s guidance is careful: apps should not treat missing or unknown signals as proof that everything is safe, and Trust Insights should not be the only factor in a decision.
That creates room for better interventions. A financial app could add a short delay before a large transfer. A bank could show a warning about impersonation scams. A wallet app could ask the user to confirm whether someone is telling them what to do. A service could route a suspicious request to manual review. A platform could raise its internal risk score without blocking the user immediately.
The best use is not a panic screen. It is a pause at the right moment.
That pause could save users from the pressure that makes scams work. Fraudsters rely on urgency. They tell victims not to hang up, not to call family, not to contact the bank, not to think. A well-designed app intervention can break that rhythm without accusing the user or exposing private information.
A good warning would be specific, calm, and actionable. It might say that scammers often stay on the phone while guiding people through transfers, account changes, or remote access steps. It might suggest ending the call and contacting the institution through an official number. It might delay the transaction long enough for the user to reconsider.
Privacy Is the Main Design Constraint
Trust Insights is not a content-scanning feature. Apple’s WWDC26 developer session emphasizes that device-derived signals are not shared with Apple or third parties, and that users have control over whether Trust Insights is enabled for an app. Developers need authorization, and the framework requires an entitlement through Xcode.
That structure is important because scam detection can easily become invasive if handled badly. A system that reads messages, records calls, or scans photos for fraud would create obvious privacy concerns. Apple is trying to give apps risk context without giving them access to personal content.
The framework combines device and cloud infrastructure, but the app integration is client-side through Swift APIs. Developers request an evaluation, handle the result, and report how the insight was used. Apple also requires feedback so the system can improve over time and avoid becoming a one-way signal without outcome data.
There is also an anti-coercion detail in the design. Apple says users can disable Trust Insights in Settings, but a cooldown period may apply after disabling. That is meant to help protect users who may be coached by a scammer to turn the protection off.
That small detail shows the type of threat Apple is designing for. The attacker may not be trying to break into the phone. They may be trying to manipulate the user into weakening their own protections.
Where Trust Insights Could Be Used First
The most obvious early adopters are financial apps. Banks, payment apps, crypto platforms, investment apps, peer-to-peer transfer services, and shopping marketplaces all deal with actions that can be hard to reverse. If Trust Insights helps identify even a small share of coerced transfers before completion, it could become a valuable layer in fraud prevention.
Account security flows are another target. Scammers often push victims to change passwords, add recovery information, approve a new device, share a code, or disable protections. Apps could request a trust evaluation before sensitive account actions that normally look legitimate.
Communication apps could also benefit, but the design will need more care. If a user is sending documents, signing forms, sharing credentials, or submitting sensitive data, Trust Insights could help the app decide whether to add a warning. The challenge is to avoid making ordinary communication feel monitored or over-policed.
AI services are also included in Apple’s operation categories through resource use, such as costly or constrained infrastructure. That gives developers a way to detect suspicious use of expensive AI features or workflows where a user may be manipulated into generating, submitting, or sharing information under pressure.
The strongest early use cases will likely be narrow. Large transfers. New payees. Account recovery. Device authorization. Data export. Remote access permissions. Sensitive document sharing. Those are the moments where a short delay or extra warning can help without making the whole app slower.
The Design Challenge for Developers
Trust Insights will only work well if developers use it carefully. Too many warnings will train users to ignore them. Too few warnings will miss the moment when pressure is highest. A harsh warning may embarrass a user. A vague warning may be useless.
Apple’s developer guidance encourages thoughtful interventions. That means apps should design responses around the action being taken, the user’s history, the amount of risk, and the result returned by the framework. A small account update may need only a gentle prompt. A large irreversible transfer may deserve a delay, a warning, or review.
Developers also need to prepare for errors. Trust Insights can take a couple of seconds to return a result and requires internet reachability. Apps should place the request where a short wait feels natural, such as during a review screen, confirmation step, animation, or transaction check.
The framework also supports model governance, including current and prior model versions. That gives developers a way to test how newer signals affect decision logic before changing user-facing flows.
This is not a magic fraud switch. It is a new input for systems that already look at transaction size, account age, device trust, location, behavior, authentication, app integrity, and known scam patterns.
Why This Fits iOS 27
iOS 27 is increasingly shaped by features that use on-device context without handing apps broad access to private data. Trust Insights fits that direction. It gives developers a way to act on risk without asking for the content of a call, the text of a message, or the contents of personal files.
It also shows a more practical side of Apple Intelligence-era security. AI is often discussed as a productivity tool, but fraudsters are also using AI for voice cloning, fake video calls, automated scripts, and more convincing impersonation. iOS needs defenses that understand behavior, not only passwords and device identity.
Trust Insights could become one of the more useful iOS 27 developer features because it sits at the exact point where many scams succeed: the confirmation screen, the transfer button, the permission prompt, or the account-change flow.
The next test will be adoption.
Apple can provide the framework, but banks, payment apps, marketplaces, communication services, cloud platforms, and AI apps have to build it into real user journeys. The most effective implementations may be the least dramatic ones: a timely pause, a plain warning, and a path back to safety before the user gives the scammer what they came for.