I have an urgent question I received this email (will send it down here) and then I went to one of the links and it opened a website for me that starts at c.apple.*** so I wanted to know if this is real or are they trying to hack into my user?
[Edited by Moderator]
Read the following two links, as background for the sorts of scams and spam that’s around >
Recognize and avoid phishing messages, phony support calls, and other scams - Apple Support
Identify legitimate emails from the App Store or iTunes Store - Apple Support
Those two links will give you a foundation of many types of scams that are endemic, and how to recognize some of those scams.
That written… This mail message looks like some Apple advertising
The c.apple.com domain is an Apple domain. Whether it’s spoofed or not, I can’t tell from what’s been posted here.
This mail message does look like the usual sort of Apple App Store advertising mailed out from Apple when the user doesn’t have their Apple advertising messages settings disabled. Disable and uncheck your Apple advertising preferences, and it’ll go away.
Two more links, for controlling your advertising preferences >
Manage emails about Apple and Apple services - Apple Support
Control personalized ads on the App Store, Apple News, and Stocks - Apple Support
Couldn't say since I have never received an ad from Apple; I turned off allowing those several email addresses and 20+ years ago.
babowa wrote:
Do you think that email address (the only thing I could make out in the upper right corner) is a legit email address? I was not sure especially since it could be but be re-directed to a scam site.
That is definitely a legitimate e-mail address. That doesn't mean much. Why would a scammer provide their own e-mail address?They want people to click, not reply. Of course, there is no way without looking at the internal headers of the message to say for sure that it originated from Apple.
Reggie wrote:
From a domain that is c.apple.com? And I haven't had a marketing email from Apple to a link to the App Store in like...ever.
The domain is "apple.com" and Apple definitely owns that. Anything that appears to the left of ".apple.com" is whatever the brilliant minds at Apple can think of that day and get someone in corporate DNS management to approve.
But again, this is a screen shot, so all bets are off. I don't even think it is a screenshot from Apple Mail. It might be Gmail or something. It is possible to fake out a domain such that it appears to look like "c.apple.com" but redirect to something else. It is also possible to do other clever tricks around that.
But the truth is, none of that matters in the least. I can guarantee that Apple regularly sends out e-mail messages like this. It's not just Apple either - all companies do it. The more often a company lectures you about how to spot a phishing attack, the more often it sends out legitimate e-mails to its own customers that tick every box in guide about how to spot a phishing attack. Why else would scammers do it? They know that people can't tell the difference. And it isn't because people are stupid. It is because companies do this millions of times a day, 24x7. Dollar for dollar, they make more money from it than the phishing scammers do.
There are a few things about this particular message, and some that I've received, that make them a little bit more suspect. For one thing, this e-mail was (originally) in Hebrew. It looks like they sent an English-language version too, but this is still an off-brand market for Apple. Those don't get the same level of attention from Apple. If you are in the US and only get consumer mailings, then Apple makes sure those are perfect. But anything outside the US, or outside mainstream consumer markets, you just have to go with your instinct. Based on your past interactions with this particular off-brand team at Apple, is this the kind of e-mail that Apple would send? Last year at this time, didn't Apple send out an e-mail to lots of people asking them to test "Bug Sur"? Freudian slip or just normal non-consumer e-mail quality?
From a domain that is c.apple.com
That is why I am doubting it.
I wanted to know if this website is real
