jbow1335

Q: phishing or real?

just hoping someone can offer some advice as to whether this is a genuine email from apple as I never made this purchase and it's got me worried that if it is a real email then my account has been hacked.

 

Invoice
INVOICE DATE
17 July 2016
SEQUENCE NO.
1-*******46
ORDER ID
M*******
DOCUMENT NO.
06******56
iTunes StoreTYPEPURCHASED FROMPRICE
For You
Lil Kesh
Write a Review | Report a Problem
SongOyinlola's iPhone£20.79
Inclusive of VAT at 20%
VAT charged at 20%  £4.13
TOTAL£20.79

 

needless to say my name is not 'oyinlola' and nor do i have a phone under that name attached to my account! please help

 

<Links Edited by Host>

Posted on Jul 17, 2016 5:55 PM

Close

Q: phishing or real?

  • All replies
  • Helpful answers

Previous Page 2 of 3 last Next
  • by Ricksongoh,

    Ricksongoh Ricksongoh Jul 20, 2016 10:25 AM in response to Ricksongoh
    Level 1 (4 points)
    Jul 20, 2016 10:25 AM in response to Ricksongoh

    Here is the trick... i have sent report to apple, and waiting to their respond, but I can definitely confirm it is phishing email. check out the cancel button in attachment, as @jbow1335 mention when it click cancel link it show warning site.. you can see clearly it is not apple official site, although other link make you think it is official site. My question is how they get our email address... I believe is some app that we downloaded that is not from App Store. like Pokemon Go hack version? anyone have any other idea might compromise your email to hacker?

     

    Screen Shot 2016-07-21 at 1.19.03 AM.png

  • by Csound1,

    Csound1 Csound1 Jul 20, 2016 10:30 AM in response to Ricksongoh
    Level 9 (50,417 points)
    Desktops
    Jul 20, 2016 10:30 AM in response to Ricksongoh

    Your email address is not secret, with enough time they can get anyone's.

  • by ChitlinsCC,

    ChitlinsCC ChitlinsCC Jul 20, 2016 10:54 AM in response to Csound1
    Level 5 (7,763 points)
    Notebooks
    Jul 20, 2016 10:54 AM in response to Csound1

    My Apple ID email is unique for use in this forum. I have another for Apple ID > purchasing.

    There are nefarious ways to discover supposedly "secure" personal identifying data...

    ... remember the rash of phishers that we "careful" folk got last year? (methinks Ethan7988 started the now POOFed thread - but I won't mention the 'conclusion' to which we had had to come)

  • by Jmneave1,

    Jmneave1 Jmneave1 Jul 20, 2016 11:40 AM in response to jbow1335
    Level 1 (4 points)
    Jul 20, 2016 11:40 AM in response to jbow1335

    Ive just received the exact same email from Apple. Any chance of an answer Apple? (Ps been waiting on the apple support number for 15 minutes now waiting to speak to someone to sort this mess out) sort it out Apple.

  • by ChitlinsCC,

    ChitlinsCC ChitlinsCC Jul 20, 2016 12:11 PM in response to Jmneave1
    Level 5 (7,763 points)
    Notebooks
    Jul 20, 2016 12:11 PM in response to Jmneave1

    reportphishing@apple.com is CCed to

    Security Awareness Training | Email Phishing Security | PhishLabs

    https://www.phishlabs.com/

    I am sure that Apple never EVER responds to the reports you forward as attachements

    Apple Support can do nothing for you.

    If you provided ANY info to the linked site, you have already done the damage...

    recover from a phishing scam - Google Search

    https://www.google.com/search?num=20&newwindow=1&q=recover+from+a+phishing+scam& oq=recover+from+a+phishing+scam&gs_l=ser…

  • by DEBORAHJANEW,

    DEBORAHJANEW DEBORAHJANEW Jul 23, 2016 10:31 AM in response to ChitlinsCC
    Level 1 (4 points)
    Jul 23, 2016 10:31 AM in response to ChitlinsCC

    Yes, just got a very similar one.

    It's a very very VERY good phishing email.

    Even down to the name of the phone that's carefully measured to arouse maximum worry.

    All the links in the email are genuine... except the one to "Cancel the purchase".

    Everyone needs to be on their toes, I almost clicked on the link.

    D.

  • by elcpu,

    elcpu elcpu Jul 23, 2016 10:40 AM in response to DEBORAHJANEW
    Level 6 (16,176 points)
    Photos for Mac
    Jul 23, 2016 10:40 AM in response to DEBORAHJANEW

    DEBORAHJANEW wrote:

    ...All the links in the email are genuine... except the one to "Cancel the purchase".

    Everyone needs to be on their toes, I almost clicked on the link.

     

    Yes and thanks for posting. I had to ask the hosts to remove the active links on the first picture, as you can see on Page 1.

  • by ChitlinsCC,

    ChitlinsCC ChitlinsCC Jul 23, 2016 10:56 AM in response to DEBORAHJANEW
    Level 5 (7,763 points)
    Notebooks
    Jul 23, 2016 10:56 AM in response to DEBORAHJANEW

    Some are very clever indeed... they likely will never be caught either, since they ARE one of the more clever ones.

    Be sure and Forward AS ATTACHMENT to reportphishing@apple.com - this CCs the entire email contents (header info is what is important) to Apple's chosen "private detectives" at

    Security Awareness Training | Email Phishing Security | PhishLabs

    https://www.phishlabs.com/

  • by ane6,

    ane6 ane6 Jul 25, 2016 12:32 AM in response to jbow1335
    Level 1 (4 points)
    Jul 25, 2016 12:32 AM in response to jbow1335

    OMG i had the same yesterday.. i received do emails from saturday and sunday with twu supposed payments...

  • by Diana.McCall,

    Diana.McCall Diana.McCall Jul 25, 2016 6:55 AM in response to Ricksongoh
    Level 4 (3,644 points)
    Apple TV
    Jul 25, 2016 6:55 AM in response to Ricksongoh

    Hi, it sounds like you may have a different question/problem. I'd recommend a new post featuring your topic.

  • by ChitlinsCC,

    ChitlinsCC ChitlinsCC Jul 25, 2016 8:34 AM in response to ane6
    Level 5 (7,763 points)
    Notebooks
    Jul 25, 2016 8:34 AM in response to ane6

    Sorry to hear that.

    Follow the instructions already posted

  • by kjmbxl,

    kjmbxl kjmbxl Jul 26, 2016 9:40 AM in response to jbow1335
    Level 1 (4 points)
    Jul 26, 2016 9:40 AM in response to jbow1335

    Hmm, I recieved a similar mail yesterday, but Iwas charged much more for that same album. Good to hear that it is a phishing scam. I had tried to download iTunes yesterday to find a song for a funeral, but the download didn't work out, so no actual purchase could have been made in the iTunes Store. Since I haven't used iTunes ever before, I was not able to distinguish a fake from a real invoice. It all seemed pretty real. And so far, I have only used free apps, so no credit card info was attached to this account. Good moment to change passwords anyway.

  • by rr1345,

    rr1345 rr1345 Jul 28, 2016 12:29 PM in response to jbow1335
    Level 1 (4 points)
    Jul 28, 2016 12:29 PM in response to jbow1335

    Hello,

     

    I have received the same email today with a different amount, order ID, sequence #, and document #. Every time I try to click on cancel and manage subscriptions a red window appears stating "Deceptive site ahead." I think this may be a phishing scam but need clarification. I have signed in to my Apple account but states no purchases were made. But the email they sent to my outlook account is not registered with Apple in the first place. Very weird.

  • by turingtest2,

    turingtest2 turingtest2 Jul 28, 2016 12:34 PM in response to rr1345
    Level 10 (85,833 points)
    iPod
    Jul 28, 2016 12:34 PM in response to rr1345

    rr1345 wrote:

     

    Every time I try to click on cancel and manage subscriptions a red window appears stating "Deceptive site ahead." I think this may be a phishing scam but need clarification.

     

    The evidence is all there. It is is a scam. Do not proceed. Do not give crooks your details.

     

    tt2

  • by ChitlinsCC,

    ChitlinsCC ChitlinsCC Jul 28, 2016 1:27 PM in response to rr1345
    Level 5 (7,763 points)
    Notebooks
    Jul 28, 2016 1:27 PM in response to rr1345

    Browser developers keep a database of sites that will cause the "red window" - here is Firefox's and Chrome likely has a similar one. Time to close that window and stop trying the links

    reported-attack-site-warning-message.jpg

    It is best to use your email client's ability to look at the actual URL(s) by hover the cursor or copy > paste then LOOK before leaping

Previous Page 2 of 3 last Next