That Text About a Suspicious Apple Pay Transaction Is Probably a Scam

A new phishing scam is targeting Apple Pay users, attempting to lock them into phony support calls or emails that could see them handing over their passwords and credit card numbers. The news was first highlighted by AppleInsider and involves warnings that look suspiciously like official Apple messaging. While AppleInsider's report doesn't link to any specific user complaints of this happening, it does include example screenshots, and reports matching AppleInsider's description have popped up on both Reddit and Apple's official support forums over the last 30 days.

The scam might come over either email or text, and usually warns the recipient about a potentially fraudulent purchase made using their Apple Pay at a physical Apple Store, while offering a phone number or email to contact to address the issue. According to AppleInsider, it might also include a case ID, timestamp, or other technical details in order to appear more legitimate. One user on Reddit, for instance, considered that the scam might be a legitimate text from Apple because it included the official sounding phrase "If this was you, no action is needed."

However, inconsistencies remain, such as the scam often referring to Apple Accounts as Apple IDs, a now outdated term. Additionally, while emails might use official looking letterhead that makes them appear to come straight from Apple, mistakes could remain. For instance, an email could open with "Hello {Name}" instead of being addressed to the recipient's actual name. It could come from a bogus address, but even appearing to come from a legitimate source like "appointmentandebills@icloud.com" isn't a strong indicator that it's real, as it's possible for scammers to spoof email addresses. Overall, the idea seems to be to speed the recipient into action with an urgent tone, while using Apple's logo and a professional writing style to mask any clues as to who is really sending these notices.

How to tell if that Apple Pay text or email is actually a scam

If you are receiving any texts or emails about your Apple Pay activity at all, chances are they probably aren't real—Apple doesn't reach out to its users in this way. Rather than sending texts or emails, communication instead comes directly from the Wallet app. Additionally, Apple Pay serves as a medium for payment rather than as a credit or debit account in and of itself. As such, if any fraudulent transactions are detected, notices would come from your bank or credit card provider rather than Apple itself.

Still, it is worth keeping an eye out for any red flags as well. Look for small typos or unusual domain names, which can help give a fake message away, even if a lack of these isn't an indicator that a message is legitimate. Also, rather than calling any provided phone numbers, consider searching for them online to see whether they've been reported as being tied to a scam operation. At any rate, do not respond to these notices, and don't provide any information (such as passwords, which Apple will never ask for) to them if you've already reached out by accident. There are better ways to verify your Apple Pay activity.

What to do if you think you're being scammed

If you think a message you've received is illegitimate, the best thing you can do is ignore it and verify it independently. Instead of responding to the suspicious text or email directly, or calling any provided phone numbers, double check any claims made in the statement through official Apple channels. You can see your recent Apple Pay purchases in the Wallet app by tapping on one of your registered cards, and opening the Settings app and navigating to Media & Purchases > View Account > Purchase History will show you any recent App Store purchases. If you don't see a transaction mentioned in one of these notices in your official payment history, chance are it never happened.

If you're still in doubt you have options. Rather than reaching out to an email or phone number linked in a potential scam notice, start fresh with a new message straight to Apple's official support. You can find the proper contact details, including an official Apple phone number for your region, on Apple's website. The company will be able to determine whether it's seen any suspicious activity tied to your account.

Finally, once you're certain a message is part of a scam, you can forward it (or simply report it, if forwarding isn't possible) to Apple to help the company shut it down. The specific email address you'll want to use will differ based on the type of message, and you can find all your options on Apple's support website, under "How to report suspicious emails, messages, and calls." Once you've sent the message to the correct channels, delete it from your inbox to keep yourself from accidentally clicking any compromised links. As added security, also consider changing your Apple Account password, or using a password manager.