Your Apple ID was Used at “APPLE STORE”Phishing Scams in Text Messages

Recently, I received a text message labeled as an “[Apple Security Alert],” a tactic often used by scammers to exploit users’ trust in major companies like Apple. Such scams have become increasingly common as fraudsters grow more adept at mimicking legitimate communications to steal personal information or money. claiming that my Apple ID was used for a $143.95 transaction at the Apple Store through Apple Pay Pre-Authorization. At first glance, the message seemed alarming. However, upon closer inspection, it became evident that this was a phishing scam. Here’s my experience and some essential tips to help you identify and avoid such scams.

We have previously covered many related topics, and I recommend checking those out as well for a deeper understanding and additional tips:

• iPhone Says: Spam Risk, Fraud, Scam Likely: What Do They Mean?
• Phishing for Apple ID Accounts: Scam Emails and Texts
• Using Apple Pay: How to Avoid Scams and Dispute Charges
• What to Do If You Clicked a Phishing or Scam Link

The Phishing Scam Details

The text I received stated:

“We have noticed that your Apple iCloud ID was recently used at ‘APPLE STORE – CA’ for $143.95, paid by Apple Pay Pre Authorization. Also, some suspicious sign-in requests and Apple Pay activation requests were detected. That looks suspicious to us. In order to maintain the security and privacy of your account, we have placed those requests on hold. If NOT you? talk to an Apple Representative. Failing may lead to auto debit and charge will not be reversed. Call +1 808XXXXXXX immediately to cancel this charge. Billing Department: https://support.apple.com/billing Have a great day!”

This message is an example of the elaborate tactics scammers use to make their messages seem legitimate.95, paid by Apple Pay Pre Authorization. Failing to respond may lead to auto debit, and the charge will not be reversed.”

The message included a phone number and a link to supposedly resolve the issue. Scammers often disguise their links by using URLs that appear legitimate at first glance, such as including Apple’s name or common keywords. However, these links frequently redirect to fraudulent websites designed to steal personal information. Always inspect links carefully by hovering over them to reveal their true destination, and never click on them directly. However, a few red flags stood out:

1. Identical Amounts in Reports: When I Googled the scam, I found that the $143.95 amount was consistently used in other phishing attempts, indicating it was a common bait.
2. Threatening Language: Scammers often use urgency and fear tactics, such as the claim that failing to act would result in irreversible charges.
3. Suspicious Links: Although the link appeared legitimate, scammers often disguise malicious URLs to look like genuine Apple resources.

What I Did

I took the following steps to confirm the scam and protect my accounts:

1. Checked My Payment Accounts: I immediately reviewed my Apple Pay and bank accounts by logging into each account directly through their official apps or websites. I looked for any unauthorized charges, recent transactions, or unusual activity. This is a crucial step, as spotting any discrepancies early can help mitigate potential fraud. There were no unauthorized charges or suspicious activity.
2. Verified the Link Independently: Instead of clicking the link in the text, I typed Apple’s official support URL directly into my browser. This confirmed that the link in the message was fake.
3. Googled the Phone Number: None of the prefixes matched Apple’s legitimate support numbers. This further validated my suspicion.
4. Deleted the Message: I reported the text as junk and removed it from my inbox. Then forgot about it.
5. Updated Passwords: To ensure my account remained secure, I updated all relevant passwords.

How to Spot and Avoid Apple Phishing Scams

Phishing scams are becoming increasingly sophisticated, often imitating legitimate Apple communications. Messages can come under various guises, such as “Apple Security Alert” or “Apple Approval Notice,” each designed to trick users into acting quickly without verifying the information. Here are some tips to help you stay safe:

Checking Receipts

Genuine Apple receipts include your billing address and details of the purchase. If you’re unsure about a transaction, check your purchase history in the App Store or iTunes Store.

Avoiding Suspicious Links

Never click on links in unsolicited messages. Instead, navigate to Apple’s official website manually.

Identifying Personalization

Apple’s emails and messages address you by your real name. Messages using generic terms like “Dear Customer” are likely scams.

Inspecting Email Headers

Genuine Apple emails originate from addresses ending in @apple.com or @itunes.com. Be cautious as scammers can spoof sender addresses.

Recognizing Urgency Tactics

Scammers use threats of account suspension or fake purchases to provoke hasty actions. Always verify claims independently.

Using Apple’s Support Resources

• Visit the Apple Support website or contact them directly through official channels to confirm any suspicious communications.
• Verify Purchase Receipts: Genuine Apple receipts include your billing address and details of the purchase. If you’re unsure about a transaction, check your purchase history in the App Store or iTunes Store.
• Avoid Clicking Links: Never click on links in unsolicited messages. Instead, navigate to Apple’s official website manually.
• Look for Personalization: Apple’s emails and messages address you by your real name. Messages using generic terms like “Dear Customer” are likely scams.
• Check Email Headers: Genuine Apple emails originate from addresses ending in @apple.com or @itunes.com. Be cautious as scammers can spoof sender addresses.
• Beware of Urgency: Scammers use threats of account suspension or fake purchases to provoke hasty actions. Always verify claims independently.
• Use Apple’s Support Resources: Visit the Apple Support website or contact them directly through official channels to confirm any suspicious communications.

Reporting Suspicious Communications

If you suspect a phishing scam, Apple provides several ways to report it:

• Forward Emails: Forward suspicious emails directly to [email protected]. This helps Apple track and investigate fraudulent activities.
• Report FaceTime Scams: Take a screenshot of suspicious FaceTime calls or links and send them to [email protected]. Ensure the screenshot includes the phone number or email address of the sender.
• Flag Junk Messages: On your iPhone, tap “Report Junk” under the message to flag spam in the Messages app. This action notifies Apple and improves spam filtering for others.
• Use iCloud Mail Features: Mark spam emails as junk or move them to the Junk folder in your iCloud Mail. This helps improve iCloud’s filtering system.
• Contact Local Authorities: In the U.S., you can report scam phone calls to the Federal Trade Commission via reportfraud.ftc.gov or reach out to your local law enforcement agency.
• Forward suspicious emails to [email protected].
• Send screenshots of suspicious FaceTime calls or SMS messages to the same email.
• Mark spam emails as junk in your iCloud Mail to help improve spam filtering.
• Report scam phone calls to the Federal Trade Commission or local law enforcement.

Phishing scams like this one are designed to exploit trust and urgency. By staying vigilant, verifying claims through trusted sources, and avoiding interaction with suspicious links or messages, you can protect yourself from falling victim to such schemes. Remember, even if a message looks legitimate, double-check its authenticity through independent means. Stay cautious and keep your accounts secure.