Unauthorized charge
I received a charge for an app I didnt purchase. What should I do?
iPhone 8 Plus, iOS 13
Apple Intelligence is now available on iPhone, iPad, and Mac!
I received a charge for an app I didnt purchase. What should I do?
iPhone 8 Plus, iOS 13
Have you confirmed that the charge actually occurred, or are you basing this on an email message?
Phishing is very common, and fake purchases are routinely used as the “hook” for the phishing.
Recognize and avoid phishing messages, phony support calls, and other scams - Apple Support
Identify legitimate emails from the App Store or iTunes Store - Apple Support
See your purchase history for the App Store or iTunes Store - Apple Support
If there really was a purchase, your Apple ID password is known to others.
(Or your settings allowed someone with local access to your device to make the purchase.)
If you think your Apple ID has been compromised - Apple Support
Have you confirmed that the charge actually occurred, or are you basing this on an email message?
Phishing is very common, and fake purchases are routinely used as the “hook” for the phishing.
Recognize and avoid phishing messages, phony support calls, and other scams - Apple Support
Identify legitimate emails from the App Store or iTunes Store - Apple Support
See your purchase history for the App Store or iTunes Store - Apple Support
If there really was a purchase, your Apple ID password is known to others.
(Or your settings allowed someone with local access to your device to make the purchase.)
If you think your Apple ID has been compromised - Apple Support
Sending email addresses and calling telephone numbers are both routinely spoofed/faked/forged, too.
If you’ve re-used passwords anywhere and that service or social media site or mail service (Yahoo, for instance) was then breached, your passwords will be retried. This as many web services used rotten password hashes, or (wrongly) stored the passwords as encrypted, or (wrongly) stored the passwords as plain, unencrypted, unhashed, readable, text. Unique passwords avoid folks using those old passwords against all the other services in existence; what’s called password cramming.
Those same breached-service dumps also show email addresses, which means malcontents then know to send Apple-flavored scams and phishing to Apple-related email addresses.
Thank you! That was very helpful.
grrrr those buggers!!! My service is normally really good about catching them.
Unauthorized charge