Rescue email phishing scam from id.apple.com

I was under the impression that it was Apple policy when sending such an email NEVER to include links. Rather it would tell you to go to your account the old-fashioned way.

I agree it looks suspicious, but if it isn't it is clumsily done. I'm going to report it to reportphishing@apple.com.

Let them work out a better way.

me too! am facing the same problem guys any help?

actually, i didn't add rescue email at the bigenning when i register AppleID !!

please help

The account appleid@id.apple.com.akadns.net must be legit. After a little panic attack, I just entered appleid.apple.com and clicked on one of the links that allowed the system to send me an email (like "I've forgotten the answers to my secret questions" in the Password and Security tab).

The mail I got in my inbox came, again, from the misterious address, but was sent from the Apple ID official (and https, secure and verified with apple certificates) website.

Also, when I clicked the "Verify now" link in the first suspicious email, I was addresed to a https secure page from Apple (https://id.apple.com/....) which appeared in my iPhone with a green title next to a small lock.

I hope this answer may help you.

However, as many of you mentioned before, Apple should be more careful with stuff like this. The verification email really looked like pishing, eventhough I could finally conclude it is not a fake email.

I had an issue with my iphone yesterday. Logged into Apple/ Cloud and it would not accept my password, so I requested a reset link. Received it, logged in, resolved the issue. This morning I received the same e-mail, it was sent to my spam folder. Where it will remain.*after I forward it to the phishing e-mail addy provided* This was really poor on their part.

Also...the e-mail said my account was "temporarily locked" I just logged in and posted with no problem, so I do not believe that e-mail is legit.

I would ABSOLUTELY NOT do as this email asks.

I've received this email twice. The first time I immediately clicked and signed in. Then I thought, maybe this is a scam. So I reviewed the email again just to satisfy myself that it was legit.

The first thing I noticed was that the salutation didn't get my first name right. (Yes, I should have noticed that right away, but I just saw what I thought was a legit Apple Support email and did as requested.)

The second thing I noticed was that it said that my rescue email was my icloud email, which it isn't.

Then, I took a look at the "from" email address and the "verify" link address which was https://id.apple.com

The I went to the apple website to log in with my apple id and just as you It said my account was temporarily locked. I didn’t try to go any further and immediately called Apple Support and told them that I thought I had passed on my info to a phishing site and that I wanted to change my password and security questions.

The guy walked me through it because I was so flustered and worried that I couldn't find the "manage account" link on the web site.

He told me that the ONLY place you should change your appleID information is by following the link below, which is what comes up when you click the “manage account” link on their website.

https://appleid.apple.com/cgi-bin/WebObjects/MyAppleId.woa/

Notice how similar it is to https://id.apple.com

But it’s NOT the same.

I also didn’t receive an automatic reply from apple support notifying me that I had changed my info and that if I hadn’t authorized this to, etc, etc.

And one last thing. Remember, I said that I received this email twice. And that my first name and rescue email were wrong. The second time, where the salutation was supposed to be was a blank rectangle like you get when an image doesn’t show up in the email. Only the little broken picture icon wasn’t in the center of it. It was just blank.

So if I were you, I wouldn’t reply to this email. I would go to the “manage account” link myself directly from the apple website and change the information that way.

Wow, did anyone actually read this email? The way it is worded?

Scam - Contact Apple Support 800-694-7466 and just simply ask for the email address which Apple has for such issues as this.

If any of you all want to see what an "Actual" email looks like from Apple then just simply go to appleid.apple.com reset password chose email authentication and pay attention to what the email looks like.

Things that should REALLLY stand out in this email..

1. Sender

appleid@id.apple.com [Just stating a point - if you have to type appleid.apple.com in the address bar then why in the world would anyone consider the sender address to be real?]

2. Stating this rescue email is for Apple to contact "you"? for reseting "your' Apple ID questions or password?

3. "If you received this email in error [don't worry] someone typed in their email incorrectly"????

Sorry folks that right there should be a HUGE red flag.

Here did a little research for everyone regarding this -

http://www.digitaltrends.com/apple/apple-customers-face-new-scam-from-a-well-cra fted-email/

SCAM.

Hope this helps everyone who has gotten this email.

I got a few of these emails today. They are phishing attacks and are a great example of why it is hard to tell phishing apart from legitimate emails. I made a short video showing what happens when you click on a Verify Now link.

http://www.youtube.com/watch?v=EcOPW_h-y2E

I have received several such emails today. Just this morning I set up a WiFi booster to give me better coverage downstairs at my hope and I was thinking that somehow might have triggered some of this.

What is the verdict is this or is it not phishing?

the address sending this is Apple <appleid@id.apple.com>;

I am treating it as spam.

Its weird when i click on your quote :

https://appleid.apple.com/cgi-bin/WebObjects/MyAppleId.woa/

Notice how similar it is to https://id.apple.com

its both lead to the same page....while you say its different....is it legit or not ?

I got this today too and fell for it but changed my password right away once it said invalid email addresses once I put my correct email and password

Might be a scam so I changed my passwords right away and put 2 step

I don't need some idiot hacker locking my iPhone or wiping my Mac

I have also received an email yesterday regadring the Update your apple account just as normal email in the inbox.

Make certain the email comes from id.apple.com and NOT idapple.com.

I just got a phishing email from idapple.com.

The link it wanted to go to reset the password was:

http://www.rawpixel.com.au/tasks/plugins/xajax/lang/-/?AppleID=

If you ever want to know where a link in an email is going to go, control click the link and say "copy link" then you can paste it into a text editor to look at it. Do no paste it into a web browser to look at it.

DO NOT click on a link in any email for any account. Go to the company's website directly by typing in the URL. That's the safest way no matter what company it comes from.

Here's the text of the phishing message I just got:

This is an old thread, but I have a similar problem- I do not remember my security questions, and I have no idea what the rescue address is. It says s.....@gmail.com but I do not have a gmail with a similar name.

If you can't remember your rescue email address (you won't be able to view and/or change it until you can answer your questions) then you will have to contact Support in your country to get the questions reset.

Contacting Apple about account security : http://support.apple.com/kb/HT5699

When they've been reset you can then use the steps on this page to view/change your rescue email address for potential future use : http://support.apple.com/kb/HT5620

Or, if it's available in your country, you could change to 2-step verification : http://support.apple.com/kb/HT5570