Apple account‑alert phishing
- Security researchers reported attackers abusing Apple account change emails to send convincing phishing messages. - The messages have been observed coming through Apple’s legitimate notification channels, making them harder to spot. - BleepingComputer warns recipients to treat urgent account‑change emails cautiously because attackers are leveraging Apple’s own servers. (bleepingcomputer.com)
Attackers are abusing Apple’s account-change email system to send phishing messages through Apple’s own servers, according to BleepingComputer. (bleepingcomputer.com) The scam emails have been observed carrying fake purchase warnings, including a claim that an $899 iPhone was bought with PayPal, and telling recipients to call a phone number to cancel the order. Because the messages are sent through Apple’s legitimate notification channel, they can look authentic in the inbox. (bleepingcomputer.com) BleepingComputer reported that the phishing text was inserted into Apple account profile fields and then echoed back inside a real “account changed” alert. That means the message can arrive with Apple’s normal branding and delivery infrastructure instead of a spoofed sender address. (bleepingcomputer.com) Phishing is a scam that tries to push people into handing over passwords, codes, or money by impersonating a trusted company. Apple says scammers often use email, phone calls, pop-ups, and other messages that appear to come from legitimate brands, including Apple itself. (support.apple.com) Apple’s guidance says unexpected requests for passwords, verification codes, or payment should be treated as suspicious, and users should contact the company directly through official channels instead of replying or calling numbers in the message. Apple also says it never asks for Apple Account passwords or verification codes to provide support. (support.apple.com) That makes this campaign harder to spot than a typical fake invoice email. The warning sign is not the sender alone, but the pressure tactic: an urgent purchase claim and a phone number or other instruction that tries to pull the recipient out of Apple’s normal support flow. (bleepingcomputer.com) (support.apple.com) Apple says people who think they entered information on a scam site should change their Apple Account password immediately and make sure two-factor authentication is turned on. The safest check is to open Apple’s website or device settings directly and review purchases or account changes there, rather than through links or numbers in the alert. (support.apple.com) For now, the practical test is simple: if an Apple account-change email creates panic first and asks for action second, verify the claim inside your account before you do anything else. (bleepingcomputer.com) (support.apple.com)
