You can make a difference in the Apple Support Community!

When you sign up with your Apple Account, you can provide valuable feedback to other community members by upvoting helpful replies and User Tips.

Is this apple security

I received a text saying someone is trying to use my apple id and to call 1-805-***-**** if it was not me making the purchases. Is this an apple security alert phone?


[Apple Security Alert]


We have noticed that your Apple id was recently used at "APPLE STORE" for $143.95, paid by Apple Pay Pre Authorization. Also some suspicious sign in request and apple pay activation request detected. That looks like suspicious to us. In order to maintain the security and privacy of your account we have placed those request on hold. If NOT you? Please Call +1 805-****-*****to talk to an Apple Representative. Failing may lead to auto debit and charge will not be reversed. Call ************ immediately to cancel this charge.


Customer Support: **************

Billing Support : Subscriptions and Billing - Official Apple Support

Have a great day!



[Edited by Moderator]

iPhone 14, iOS 17

Posted on Oct 1, 2024 7:46 AM

Reply
Question marked as Top-ranking reply

Posted on Oct 1, 2024 9:10 AM

BAD GRAMMAR ALERT! --> That looks like suspicious to us


;-)

19 replies

Oct 1, 2024 8:27 AM in response to Makeupboricua

I got the same. What is a new technique here is that the received text references a "valid" billing support Apple website. This is just a false flag approach to gain confidence. The scammer is pushing you to call them. The best thing we can do with this kind of stuff is tie up their phone lines... so if you have a few minutes, call and waste their time. Of course, remember it's a scam. Don't give them any info, just waste their time.


[Edited by Moderator]

Oct 1, 2024 8:10 AM in response to Makeupboricua

It looks too threatening to me to be something from Apple. Plus it being a text makes it suspicious. Finally I cannot find any other references to it being a number used by Apple.


Fraudsters are getting very good at imitating Apple messages and sometimes the only indication in an email is very subtle. Have a look at this thread. Someone registered an Apple ID with my em… - Apple Community It can be very hard to tell from an email alone if it is authentic. The best way to check is to use an independent way through Apple's own resources to confirm what the communication claims. Scams (e-mail, text messages, and phone calls) are getting very good at closely imitating true Apple communications. Always be cautious. These support articles have some guidelines:


About identifying legitimate emails from the App Store and iTunes Store --> Identify legitimate emails from the App Store or iTunes Store - Apple Support


Recognize and avoid social engineering schemes including phishing messages, phony support calls, and other scams - Recognize and avoid social engineering schemes including phishing messages, phony support calls, and other scams - Apple Support


Avoid scams when you use Apple Cash --> Avoid scams when you use Apple Cash - Apple Support


About Gift Card Scams --> About Gift Card Scams - Official Apple Support


If you are uncertain about a message and a resource provided in that message, do not click on any links in the message. Try to use an Apple resource you know is valid to independently verify what the message is claiming. Go to a support article page on apple.com and use the instructions in the article to verify though Apple itself, or use an Apple device feature such as Settings or an Apple app. To ask Apple start at this web page: Official Apple Support


- Apple e-mails address you by your real name, not something like "Dear Customer", "Dear Client", or an e-mail address* However, having your actual name is not proof this isn’t phishing. Compromised databases may have your name and address in them.

- Apple e-mails originate from @apple.com or @itunes.com but it is possible to spoof a sender address. "Apple email related to your Apple ID account always comes from appleid@id.apple.com." - About your Apple Account email addresses - Apple Support

- Set your email to display Show Headers or Show Original to view Received From. Apple emails originate from IP addresses starting with "17.".

- Mouse-over links to see if they direct to real Apple web sites. Do not click on them as this just tells the spammer they have a working e-mail address in their database. If you are unsure, contact Apple using a link from the Apple.com web site, not one in an email.

- Phishing emails may include account suspension or similar threats in order to panic you into clicking on a link without thinking. They may report a fake purchase in order to infuriate you into rashly clicking on a false link to report a problem. March 2018 post by Niel There was a fraudulent order on my apple … - Apple Community - "Emails saying that your Apple ID has been locked or disabled are always phishing. If one actually gets disabled, its owner will be told when they try logging into it instead of through email."

- Apple will not ask for personal information in an e-mail and never for a social security number.

- Scams may have bad grammar or spelling mistakes.

- Apple will not phone you unless it is in response to a request from you to have them call you.


* Exception: I got email saying my ID is expired! Does… - Apple Community


Forward email attempts as an attachment (in MacOS Mail use the paperclip icon) to: reportphishing@apple.com then delete it.





Oct 2, 2024 9:22 AM in response to Martie239

That same scam message has been going around for quite a while now and is no indication your account has been compromised. The number that is provided is not to Apple, so that is a dead giveaway.


As for data breaches, it is safe to say that everyone's username/password has been breached at some time. That is all the more reason why the passwords should be changed frequently and do not re-use passwords.

Oct 1, 2024 11:08 AM in response to ssminton

ssminton wrote:

Out of curiosity, are the people who received this scam today have AT&T Wireless or exposure through some other recent data loss? I like to track the risk impacts when negotiating with these idiot companies after they compromise my personal data and it is sold on the dark web.

To be clear the email the OP posted is just your basic SPAM email that may not even be the result of a data breach. Simply registering a Facebook account is going to get your email address into the hands of advertisers as that is the source of their revenue.


With that said, by now it is safe to say that everyone's username/password has been exposed through any number of the data breaches. That is why users should be changing their passwords frequently and using strong passwords that are not reused.

Oct 2, 2024 9:18 AM in response to Makeupboricua

Ok, I just received the same text supposedly from Apple Security. Considering I was just notified of a massive data breach involving all of my identifiers with United Health Care Medicare Advantage PPO recently, I questioned that the text is actually from Apple and not part of a scam. I am in the process of locking down all of my credit files as well as placing a Fraud Alert on the 3 credit bureaus. They don't waste any time trying to get you, do they?

Is this apple security

Welcome to Apple Support Community
A forum where Apple customers help each other with their products. Get started with your Apple Account.