Apple invoice scamPosted on
This week a client sent over this screenshot of an email which caused her concern.
The email, apparently from Apple (she has an Apple account), advised that she had spent £26.07 downloading games using an iPod Touch. The problem is, she doesn’t have an iPod Touch and she hadn’t downloaded those games. Her instinct was that her Apple ID had been hacked and used by someone to download games.
It wasn’t that simple though. The email looks almost identical to a genuine Apple Invoice but, as the image below (a genuine Apple invoice) shows there are slight differences:
Whilst the email appears to come from an Apple email address (ending in apple.com) this is a fake address. Apple invoices come from firstname.lastname@example.org. The subject heading is different and, crucially, the real Apple email contains two bits of information which show it is genuine. The last 4 digits of your credit/debit card and (the red box above) the address you registered your Apple account with.
So, what is the point of the scam? The crucial part is this:
The scammers wish you to click on the “Cancel and Manage Subscriptions” link. They are banking on you assuming that someone has hacked your account and is using your hard-earned cash to download games. A few clicks later, and having given the scammers your Apple login details, you will then find out what it really means to be hacked.
The key in all online communications is to be defensive. If something doesn’t look 100% correct, check it. It is possible to login to your Apple account and view your recent transactions. With the client in question here we were quite quickly able to establish that there had been no transactions and no money was going to disappear out of her account.