An App Store phishing scam has been making the rounds, and these emails look similar to the real thing. People have reported getting a fake receipt claiming to be a purchase confirmation by Apple (via Wired).
[How to Protect Yourself from Phishing Scams, and How to Recover if You Get Hooked]
App Store Phishing
The email claims to be a purchase confirmation. Most often have a PDF document attached. The file doesn’t sound like it contains malware, but it does contain special URLs that send you to malicious websites.
When you open one of the URLs, it will take you to a fake website that mimics the real Apple website in appearance. And if you enter your username and password, you’ll get an alert saying your account has been locked for security reasons. If you click that it will ask you to enter more personal information to “verify” your identity. Data like your Social Security number, name, address, and even your driver’s license and passport number.
There are a couple of ways to ensure you go to the real site and not a fake one. First, don’t click on any link in these emails. Type the address into the browser bar directly. You can also look at the email of the person who sent it. Finally, you can report phishing emails to Apple by forwarding them to [email protected].
[Apple to Add a Privacy Icon to iOS to Stop iCloud Phishing]
I notice the last and sole comment was a year ago so maybe it’s time for something more recent since this type of scam hasn’t goe away. I just recieved this today, Friday June 12, 2020 an d although I already knew what it was and check all my purchace activity daily, I anted to share it because you never know who might really need the information no matter how obvious it might be to others. This is the email content with the same identicle form attached twice to the original.
My wife got a phishing e-mail today claiming to be from the App Store / iTunes Store informing her of her gift balance and giving her some “helpful” links that she could click on.
Of course, she was way to smart than to click on them. I reported it to Apple…
Old UNIX Guy