Apple Shares Tips on Avoiding App Store and iTunes Phishing Emails

Apple last week shared a new support document that's designed to help App Store and iTunes users avoid phishing emails that mimic legitimate emails from Apple.

In the document, Apple outlines techniques to identify an actual App Store or iTunes email, which the company says will always include a current billing address, something scammers are unlikely to have access to.

applescamemail

An example of a well-crafted phishing email

Apple also says that emails from the App Store, iBooks Store, iTunes Store, or Apple Music will never ask customers to provide details like a Social Security Number, mother's maiden name, a credit card number, or a credit card CCV code.

Apple recommends that customers who receive emails asking them to update their account or payment information do so directly in the Settings app on an iPhone, iPad, or iPod touch, in iTunes or the App Store on a Mac, or in iTunes on a PC rather than through any kind of web interface.

Customers who receive a suspicious email can forward it to reportphishing@apple.com, and any customer who may have entered personal information on a scam website should update their Apple ID password immediately.

Scam and phishing emails like those Apple describes in this support document are not new, but at the current time, there's a new wave of legitimate-looking emails going around that look much like Apple emails that can easily fool customers who don't know what to look for.

Related Forum: Mac Apps

Top Rated Comments

bbzzz Avatar
79 months ago
PROTIP: disable html in your mail client, it's harder to phish when you can see the links that will be used are not what the text claims they are.

Bonus: tell anyone sending html only to not be a muppet, helping the phishers by conditioning users to accepts such emails. Ask them to include the regular plain text body for those who are trying to not be phished.
Score: 6 Votes (Like | Disagree)
iModFrenzy Avatar
79 months ago
How about tips for recognizing battery throttling scams?
How much longer are we gonna beat a dead horse?
Score: 4 Votes (Like | Disagree)
AndyUnderscoreR Avatar
79 months ago
Well, you SAY that's an Apple support document....
Score: 3 Votes (Like | Disagree)
Apple_Robert Avatar
79 months ago
Good move on Apple for doing what they can to inform people about phishing.
Score: 3 Votes (Like | Disagree)
fastasleep Avatar
79 months ago
I think the current app store's "Today" section design is kind of phishing too.
If you hold the phone with your right hand and scroll through the Today's stories with your right thumb, you can so easily touch the "GET" or "purchase" buttons by mistake, and when that happens some people's first reaction is to press the home button to quit the app store app, but if you do that and if you are using touch ID to approve purchases, the purchase gets approved.
That's not what phishing means.
[doublepost=1519875375][/doublepost]
You’d think they could use their fancy smancy machine learning to stop these from coming through for all sorts of major companies. I know companies like PayPal have trouble with this all the time. Even if you can’t cover everything it’s better to get at least 90% of them.

Heck, you could probably just regex to match certain strings like their footer or other common phrases used in Apple emails. Then check the sender against official Apple email addresses and if it doesn’t check out, send it to the spam folder or put a big red warning at the top saying the email seems suspicious and might be a phishing attempt. This seems like a solvable problem in 2018.
They often do. My spam filter (ASSP) correctly flag all the phishing emails I get as spam. When reviewing stuff in my spambox for false positives, I often take a second look at things that look like they came from Netflix or Apple, only to realize they were correctly flagged. But remember there are a ton of email providers out there with various types and qualities of spam filters.
Score: 3 Votes (Like | Disagree)
goatless Avatar
79 months ago
('https://www.macrumors.com/2018/02/28/apple-app-store-phishing-emails/')


Apple last week shared a new support document ('https://support.apple.com/en-us/HT201679') that's designed to help App Store and iTunes users avoid phishing emails that mimic legitimate emails from Apple.

In the document, Apple outlines techniques to identify an actual App Store or iTunes email, which the company says will always include a current billing address, something scammers are unlikely to have access to.


An example of a well-crafted phishing email
Apple also says that emails from the App Store, iBooks Store, iTunes Store, or Apple Music will never ask customers to provide details like a Social Security Number, mother's maiden name, a credit card number, or a credit card CCV code.

Apple recommends that customers who receive emails asking them to update their account or payment information do so directly in the Settings app on an iPhone, iPad, or iPod touch, in iTunes or the App Store on a Mac, or in iTunes on a PC rather than through any kind of web interface.

Customers who receive a suspicious email can forward it to reportphishing@apple.com, and any customer who may have entered personal information on a scam website should update their Apple ID password ('https://support.apple.com/kb/HT201355') immediately.

Scam and phishing emails like those Apple describes in this support document are not new, but at the current time, there's a new wave of legitimate-looking emails going around that look much like Apple emails that can easily fool customers who don't know what to look for.

Article Link: Apple Shares Tips on Avoiding App Store and iTunes Phishing Emails ('https://www.macrumors.com/2018/02/28/apple-app-store-phishing-emails/')
[doublepost=1519861795][/doublepost]That's actually a pretty good fake. The ones I receive are usually riddled with odd, non-native phrasing. Not that my english is perfect, but english does have its idiomatic ways, and certain words, phrases, and capitalization patterns standout as not being businesslike.
Score: 2 Votes (Like | Disagree)

Popular Stories

reset password request iphone

Warning: Apple Users Targeted in Phishing Attack Involving Rapid Password Reset Requests

Tuesday March 26, 2024 4:34 pm PDT by
Phishing attacks taking advantage of Apple's password reset feature have become increasingly common, according to a report from KrebsOnSecurity. Multiple Apple users have been targeted in an attack that bombards them with an endless stream of notifications or multi-factor authentication (MFA) messages in an attempt to cause panic so they'll respond favorably to social engineering. An...
iPhone Home Screen Gradient Blank Spaces 1

Sources: iOS 18 Lets Apps Be Placed Anywhere on Home Screen Grid

Sunday March 24, 2024 1:33 pm PDT by
iOS 18 will give iPhone users greater control over Home Screen app icon arrangement, according to sources familiar with the matter. While app icons will likely remain locked to an invisible grid system on the Home Screen, to ensure there is some uniformity, our sources say that users will be able to arrange icons more freely on iOS 18. For example, we expect that the update will introduce...
iPad Pro 2024 Landscape Camera Feature

New iPad Pro Again Rumored to Feature Landscape Front-Facing Camera

Monday March 25, 2024 5:43 am PDT by
The next-generation iPad Pro will feature a landscape-oriented front-facing camera for the first time, according to the Apple leaker known as "Instant Digital." Instant Digital reiterated the design change earlier today on Weibo with a simple accompanying 2D image. The post reveals that the entire TrueDepth camera array will move to the right side of the device, while the microphone will...
sonoma desktop wwdc

Apple Releases macOS Sonoma 14.4.1 With Fix for USB Hub Bug

Monday March 25, 2024 10:10 am PDT by
Apple today released macOS Sonoma 14.4.1, a minor update for the macOS Sonoma operating system that launched last September. macOS Sonoma 14.4.1 comes three weeks after macOS Sonoma 14.4. The ‌‌‌‌macOS Sonoma‌‌ 14.4‌.1 update can be downloaded for free on all eligible Macs using the Software Update section of System Settings. There's also a macOS 13.6.6 release for those who...
maxresdefault

Apple Announces WWDC 2024 Event for June 10 to 14

Tuesday March 26, 2024 10:02 am PDT by
Apple today announced that its 35th annual Worldwide Developers Conference is set to take place from Monday, June 10 to Friday, June 14. As with WWDC events since 2020, WWDC 2024 will be an online event that is open to all developers at no cost. Subscribe to the MacRumors YouTube channel for more videos. WWDC 2024 will include online sessions and labs so that developers can learn about new...
Generic iOS 18 Feature Purple

iOS 18 Will Finally Bring This Android Feature to iPhone

Monday March 25, 2024 6:42 am PDT by
iOS 18 will allow iPhone users to place app icons anywhere on the Home Screen grid, according to sources familiar with development of the software update. This basic feature has long been available on Android smartphones. While app icons will likely remain locked to an invisible grid system on the Home Screen, our sources said that users will be able to arrange icons more freely on iOS 18....
apple maps 3d feature

Apple Maps May Gain Custom Routes With iOS 18

Tuesday March 26, 2024 3:10 pm PDT by
Apple may be planning to add support for "custom routes" in Apple Maps in iOS 18, according to code reviewed by MacRumors. Apple Maps does not currently offer a way to input self-selected routes, with Maps users limited to Apple's pre-selected options, but that may change in iOS 18. Apple has pushed an iOS 18 file to its maps backend labeled "CustomRouteCreation." While not much is revealed...