Apple Store billing phishing – beware bogus emails!

Graham Cluley
Graham Cluley
@[email protected]

ApplePhishing isn’t just about stealing your banking details, your PayPal password or even your Facebook login credentials.

These days it could be your Apple account that is being targeted too.

With more and more people having Apple IDs (used by millions for purchasing software from the Mac or iPhone App stores, or downloading music and movies from iTunes) it’s inevitable that criminals will show an interest in stealing your credentials.

On the surface, the following email might appear to come legitimately from Apple.

Sign up to our free newsletter.
Security news, advice, and tips.

Phishing email

Dear Customer,

It has come to our attention that your account Billing Information records are out of date. That requires you to update your Billing Information. Failure to update your records will result in account termination.

Click on the reference link below and enter your login information on the following page to confirm your Billing Information records...

Click on [LINK] to confirm your Billing Information records.

Apple Customer Support

Take a closer look at the email, however, and if you hover your mouse over the link you will see that the email is attempting to take you to a German website, rather than the legitimate Apple Store.

A closer look at phishing email

In this particular case, the webpage you are taken to is now suspended – but future messages could easily take you to a fake Apple Store login page.

The emails appear to be being spammed out widely, and not just to Apple Store users. The cybercriminals are taking a shotgun approach, hoping that a good proportion of recipients have Apple IDs and might be fooled into handing over their details.

Always take care over unsolicited emails, and be cautious of the links you click on. Sophos products are blocking the above message as spam.

Graham Cluley is an award-winning keynote speaker who has given presentations around the world about cybersecurity, hackers, and online privacy. A veteran of the computer security industry since the early 1990s, he wrote the first ever version of Dr Solomon's Anti-Virus Toolkit for Windows, makes regular media appearances, and is the co-host of the popular "Smashing Security" podcast. Follow him on Twitter, Mastodon, Threads, Bluesky, or drop him an email.

What do you think? Leave a comment

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.