Cybersecurity experts have warned of sophisticated online scams targeting Apple customers via fake emails, aimed at stealing banking data and seizing sensitive information.
These messages rely on false claims of high-value purchases made through the "Apple Pay" service, and urge recipients to take immediate action by visiting an Apple store or calling a specific phone number to address the alleged problem.
When victims contact the numbers in the messages, they are redirected to people impersonating Apple support staff, who then proceed to request sensitive data, such as Apple IDs, two-factor authentication codes, or payment information, taking advantage of their anxiety and urgency.
Fraudulent entities deliberately give their messages an official appearance by including case identification numbers, timestamps, and technical details that suggest credibility, even though the email addresses sent do not belong to Apple's official domain, even if the username seems familiar.
Obvious technical inconsistencies, such as illogical IP addresses or generic greetings like "Hello (name)," reveal the fraudulent nature of these messages, as well as the fact that searching for the mentioned phone numbers often leads to sites unrelated to Apple support, such as public health pages or unrelated services.
This scam was circulated on Apple forums, where an iPhone user posted details of receiving a suspicious message on January 28, 2026, confirming that there was no deduction in his digital wallet worth $623, and that he refrained from clicking on the links or calling the numbers provided.
Apple confirms that it never schedules appointments or handles fraud cases via email, nor does it ask users to call numbers included in unsolicited messages to resolve billing issues, which reinforces suspicions about these messages and indicates that they are part of a widespread phishing campaign.
The company also points out that official support channels direct users exclusively to Apple's websites and authorized help pages, warning against responding to any urgent demands or threats to suspend accounts.
In this context, AppleInsider reported that fraudulent messages rely on stirring up urgency and fear, while genuine messages from Apple do not pressure users to make immediate decisions or threaten to suddenly close their accounts.
Apple's global standing and large user base are key factors in making it a frequent target for identity theft, as scammers exploit the high level of trust in its brand to deceive victims into believing their messages are legitimate.
Cybersecurity experts urge users to check any suspicious messages by verifying the sender's information and contacting Apple directly through its official channels, in addition to reporting fraudulent messages via email: reportphishing@apple.com, while emphasizing not sharing verification codes, passwords, or payment information with untrusted parties.
