User profile for user: bridgid814
bridgid814 Author
User level: Level 1
5 points

Fraudulent emails coming from Apple

I received 3, I believe, fraudulent emails on my Yahoo email address appearing to come from Apple (the address is a****.apple.com) stating the following:

"Dear ApplePay BTC Paid for 759. 99 USD for Dispute Call 1 8*****16. ,

The following changes to your Apple Account, ke******ey@icloud.com, were made on 3 July 2025 at 07:44:42 GMT:

Shipping Information

If you did not make these changes, or if you believe an unauthorized person has accessed your account, you should change your password as soon as possible from your Apple Account account page at https://account.apple.com.

Sincerely,

Apple Support


I don't have an ApplePay account. Is this fraudulent, and is there any action I need to take besides changing my password?




[Edited by Moderator]

iMac 27″

Posted on Jul 3, 2025 7:56 AM

Reply
Question marked as Top-ranking reply
User profile for user: Mac Jim ID
Mac Jim ID
User level: Level 9
60,050 points

Posted on Jul 4, 2025 7:33 AM

ek111 wrote:

Appreciate the quick response, as I just received this same email 4 times this morning. But I suggest giving users the actual email address for reporting scams: reportphishing@apple.com, because the page you provided (Recognize and avoid social engineering schemes including phishing messages, phony support calls, and other scams - Apple Support) is quite long and is full of information that many people already know.
  • You can certainly report if you wish, but with the sending addresses being spoofed and constantly changing, then reporting and blocking will be ineffective. The key is identifying the scams so you are not a victim.
  • The sending address you identified is a spoofed address, which is the exact reason why you cannot count on that to determine if it is real. That is the very first bullet point in the attached article that says they will look like they are from legitimate companies, including Apple.
  • I could add even more tips to identify scam emails, but you already claimed it was too long to read.


The one thing I would add that will prevent compromise from every phishing message you receive is to NEVER call a number or click a link in an email/message and provide personal information. Treat all these as information only and you always have an option to use known contact information to verify any claims that require action.

  • For Apple, they have specific contact numbers and support links. Contact Apple Support - Apple Support
  • For a Bank, you should have your contact numbers, without needing to use one provided to you in the email.
  • UPS/FedEx scam about an undelivered package, you contact the company yourself.
  • Department of Transportation scam claiming you have unpaid tolls. you contact the DOT.
  • Email claiming your password was changed and you should click a link if it was not you. Don't do it! Sign into the website for whatever company is making that claim and secure your account.
  • IRS claiming you have money coming to you and need to click a link and enter SS#.


You get the idea, there are simply too many scams to list and they are constantly changing where making a list of known scams is likely to result in more accounts compromised if the user does not find a specific scam in that list.

View in context
5 replies
Question marked as Top-ranking reply
User profile for user: Mac Jim ID
Mac Jim ID
User level: Level 9
60,050 points

Jul 4, 2025 7:33 AM in response to ek111

ek111 wrote:

Appreciate the quick response, as I just received this same email 4 times this morning. But I suggest giving users the actual email address for reporting scams: reportphishing@apple.com, because the page you provided (Recognize and avoid social engineering schemes including phishing messages, phony support calls, and other scams - Apple Support) is quite long and is full of information that many people already know.
  • You can certainly report if you wish, but with the sending addresses being spoofed and constantly changing, then reporting and blocking will be ineffective. The key is identifying the scams so you are not a victim.
  • The sending address you identified is a spoofed address, which is the exact reason why you cannot count on that to determine if it is real. That is the very first bullet point in the attached article that says they will look like they are from legitimate companies, including Apple.
  • I could add even more tips to identify scam emails, but you already claimed it was too long to read.


The one thing I would add that will prevent compromise from every phishing message you receive is to NEVER call a number or click a link in an email/message and provide personal information. Treat all these as information only and you always have an option to use known contact information to verify any claims that require action.

  • For Apple, they have specific contact numbers and support links. Contact Apple Support - Apple Support
  • For a Bank, you should have your contact numbers, without needing to use one provided to you in the email.
  • UPS/FedEx scam about an undelivered package, you contact the company yourself.
  • Department of Transportation scam claiming you have unpaid tolls. you contact the DOT.
  • Email claiming your password was changed and you should click a link if it was not you. Don't do it! Sign into the website for whatever company is making that claim and secure your account.
  • IRS claiming you have money coming to you and need to click a link and enter SS#.


You get the idea, there are simply too many scams to list and they are constantly changing where making a list of known scams is likely to result in more accounts compromised if the user does not find a specific scam in that list.

Reply
User profile for user: Mac Jim ID
Mac Jim ID
User level: Level 9
60,050 points

Jul 3, 2025 8:01 AM in response to bridgid814

That is not from Apple and is just a typical scam message. All you need to do is delete or report if you wish:

Recognize and avoid social engineering schemes including phishing messages, phony support calls, and other scams - Apple Support


Remember, sending addresses can be spoofed and you should NEVER call a number or click a link and provide personal information from an email/message.


Reply
User profile for user: ek111
ek111
User level: Level 1
12 points

Jul 4, 2025 5:11 AM in response to Mac Jim ID

Appreciate the quick response, as I just received this same email 4 times this morning. But I suggest giving users the actual email address for reporting scams: reportphishing@apple.com, because the page you provided (Recognize and avoid social engineering schemes including phishing messages, phony support calls, and other scams - Apple Support) is quite long and is full of information that many people already know.


Really that page should be much, much better. Apple Support should continually update it with recent examples of fraudulent emails, like this one, and specific pointers about how to know that it is fake. It should not just be a bunch of generic, static content. It should be a dynamic web page. Apple executives need to spend a bit more of the huge profits on helping the community.


In my case, the fake emails were alarming for a few seconds because the formatting at the top is a great copy of the real thing, including the sender address of appleid@id.apple.com. Also my wallet was just stolen 3 days ago with my ID cards/documents. Given the likelihood of identity theft, the scammer's timing could not have been better. Fortunately(?), this wasn't the first batch of fake emails I've ever received from someone pretending to be Apple...

Reply

This thread has been closed by the system or the community team. You may vote for any posts you find helpful, or search the Community for additional answers.

Fraudulent emails coming from Apple

Welcome to Apple Support Community
A forum where Apple customers help each other with their products. Get started with your Apple Account.
Learn more Sign up