The text message looks urgent: your Apple Pay account has been suspended, and you need to call a support number right away. But the number does not connect to Apple. It connects to scammers who are ready to talk you out of your password, your credit card number, or both.
iPhone users across the United States have been reporting these fraudulent texts, which mimic the tone and formatting of official Apple communications. The messages warn of a compromised or frozen Apple Pay account and include a toll-free number. Anyone who calls reaches a person or automated system posing as Apple technical support. From there, the pressure ramps up fast.
The scheme fits squarely into the category the Federal Trade Commission calls imposter fraud, which the agency identified as the single most reported type of fraud in 2024. Total reported fraud losses that year hit $12.5 billion, a sharp increase from prior years, according to FTC data released in March 2025.
How the scam works
The playbook is consistent across reports. A target receives an unsolicited text warning of a problem with Apple Pay. The message urges an immediate phone call. Once the recipient dials in, the person on the other end requests sensitive information: Apple ID credentials, credit card numbers, or the six-digit verification codes that can unlock accounts.
The FTC has documented this exact approach. The agency’s consumer guidance division published a recorded example of a robocall impersonating Apple tech support. In the clip, a robotic voice warns about suspicious account activity and pushes for an immediate response. That recording mirrors what victims describe after dialing the number in the fraudulent texts.
The phone call is what makes this variant especially dangerous. Unlike a phishing email with a suspicious link, a live conversation lets scammers adapt in real time. They answer objections, use accurate-sounding technical jargon, reference Apple features by name, and claim to read off device identifiers. A person who would never click an unfamiliar link may still read a verification code aloud to someone who sounds like a professional support agent.
Once a victim is engaged, the fraud can take several paths:
- Account takeover: Callers are asked to read out one-time security codes arriving by text or email, effectively handing over control of their Apple ID and linked financial accounts.
- Remote access: Victims are pushed to install remote-access software or configuration profiles that let scammers see and control their screens.
- Direct theft: Fake agents persuade callers to send payments, purchase gift cards, or authorize transfers under the guise of “verifying” or “securing” their accounts.
What we do not yet know
The FTC’s $12.5 billion loss figure covers all reported fraud nationwide. The agency’s imposter scam category spans government impersonation, fake tech support, and more. No publicly available federal breakdown isolates losses tied specifically to Apple Pay text scams, so any dollar estimate for this particular tactic would be speculative.
Apple has not issued a public advisory addressing this wave of texts. The company’s standard security guidance tells users never to share passwords or verification codes and to contact Apple only through its official website or app, but as of May 2026, no company-specific statement tied to the current text campaign appears in the public record. Whether Apple has taken steps behind the scenes to filter these messages through iMessage or carrier partnerships remains unconfirmed.
How scammers obtain phone numbers is also unclear. Possibilities include large-scale data breaches that exposed phone numbers alongside email addresses and simple bulk messaging campaigns that blast millions of numbers regardless of whether the recipient uses Apple Pay. The second approach relies on volume: even a tiny response rate across millions of texts can generate significant returns for a low-overhead fraud operation.
How to tell a real Apple alert from a fake one
Genuine Apple Pay notifications do not arrive as standard SMS texts asking you to call an unfamiliar number. Legitimate account alerts appear within the Settings app on your iPhone, through emails from verified Apple domains, or as push notifications tied to your Apple ID. Apple will never ask you to call a phone number embedded in a text message to resolve an account issue.
Red flags that mark a message as fraudulent:
- The text comes from a regular phone number or short code you do not recognize.
- It creates extreme urgency, warning of immediate suspension or unauthorized charges.
- It asks you to call a number, click a link, or reply with personal information.
- The grammar or formatting looks slightly off compared to typical Apple communications.
What to do right now
If you received the text but did not call: Do not reply and do not dial the number. Forward the message to 7726 (SPAM), the short code most major U.S. carriers use for reporting spam texts. You can also forward suspicious messages claiming to be from Apple to [email protected]. Then delete the text.
If you already called and shared information: Change your Apple ID password immediately at appleid.apple.com. Review recent transactions across Apple Pay, your linked bank accounts, and any cards stored in your Apple Wallet. Enable two-factor authentication if it is not already active. Contact your bank or card issuer to flag potential unauthorized activity.
Report the scam: File a report with the FTC at ReportFraud.ftc.gov. If you believe your identity information was exposed, visit IdentityTheft.gov for a step-by-step recovery plan. Filing a report feeds into the data the FTC uses to spot patterns and prioritize enforcement actions.
The bigger picture
This scam works because it exploits a brand nearly every iPhone owner trusts. Apple Pay is tied to real money, real cards, and real identity information, so a warning about a compromised account triggers genuine anxiety. The phone call step transforms that anxiety into a high-pressure social engineering attack where a skilled scammer can override the caution a person might otherwise exercise.
The gap between what federal data confirms and what individual reports suggest means the true scale of this particular variant is unknown. What is not in dispute is the mechanism: scammers are manufacturing urgency under Apple’s name, and the tactic is consistent with the broader imposter fraud trend the FTC has flagged as a top consumer threat.
Until Apple or federal regulators release data specific to this scheme, the safest approach is simple. Treat any unsolicited text about Apple Pay that asks you to call a number as fraudulent by default. If you are genuinely concerned about your account, open the Settings app on your iPhone or go directly to Apple’s support site yourself. Never trust a number someone else sends you.
More from Morning Overview
*This article was researched with the help of AI, with human editors creating the final content.
