Criminals are exploiting the trust iPhone owners place in official looking emails and texts, using fake Apple and payment alerts to trick people into handing over access to their money. The latest wave of phishing and support scams is sophisticated enough to bypass gut instinct, and it is already being linked to drained bank and Apple Pay accounts. With an estimated 1.8 billion iPhone users worldwide in the crosshairs, understanding how these cons work is now a basic requirement of digital banking, not a niche security concern.
The schemes lean on familiar brands, real looking receipts and even genuine Apple support workflows to create a sense of urgency that overwhelms caution. Once a victim taps a malicious link or calls a spoofed number, scammers walk them step by step toward revealing Apple ID credentials, card details or one time passcodes that unlock entire financial lives.
How the new iPhone email scam hooks victims
The current warning centers on emails that look like routine payment or account alerts but are carefully crafted to push iPhone owners into immediate action. One target described receiving what appeared to be a PayPal receipt for a large purchase, complete with a customer support number and instructions to call if the transaction was not recognized, a pattern that has been echoed in other phishing reports. The email scam itself is technically simple, but its power lies in how closely it mimics the language and layout of genuine payment confirmations that iPhone users see every week.
Once the victim calls the number in the message, the script shifts from email to voice, where social engineering takes over. According to detailed alerts aimed at all 1.8b iPhone users, the attackers wanted victims to call back, where they would be told their accounts had been hacked and then pressured into sharing banking or Apple ID details so the criminals could supposedly secure the account, a pattern highlighted in multiple warnings. By the time the call ends, the victim may have unknowingly handed over everything needed to empty linked bank accounts.
Apple Pay, Apple ID and the expanding attack surface
What makes this wave of fraud particularly dangerous is how it piggybacks on Apple’s own ecosystem, from Apple Pay to Apple ID logins. Security researchers have flagged a worrying Apple phishing scam that claims large transactions have been placed on users’ Apple Pay accounts, urging them to click through to review or cancel the charge, a tactic that directly targets stored cards and bank accounts linked to Apple Pay. Similar messages have been reported as arriving by both email and text, blurring the line between traditional phishing and mobile specific “smishing.”
At the same time, a separate but related threat focuses on Apple ID itself, using fake password reset prompts and security alerts to harvest login credentials. Guidance on how to avoid the Apple ID scam stresses that if you are not trying to reset your password but are receiving alerts prompting you to do so, you should assume someone is attempting to compromise your account and avoid tapping Accept on any unexpected prompt, advice that has been repeated in multiple explanations. Once criminals control an Apple ID, they can access iCloud backups, intercept verification codes and pivot into banking apps and email.
Real looking support, fake security
One of the most unsettling developments is that some fraudsters are now working to generate real Apple support communications as part of their con. Investigators have documented cases where fraudsters open real support tickets in a victim’s name, which triggers official Apple emails and creates a false sense of legitimacy that makes it far more difficult for users to detect the scam, a tactic detailed in recent support analyses. When that genuine looking email is followed by a call from someone claiming to be Apple, many people understandably let their guard down.
Apple itself has tried to draw a bright line between authentic threat notifications and fakes, including publishing guidance on how legitimate alerts appear at the top of account.apple.com after you sign in with your Apple ID, a detail spelled out in official support documentation. Independent security specialists have echoed that advice, noting that at the top of account.apple.com, after signing into your Apple ID account, a clear and visible notification will appear if Apple has actually flagged a threat, and that this is the safest way to verify the authenticity of a notification rather than trusting an email or text alone, as outlined in detailed guidance.
From PayPal style lures to Apple Pay drain: how money vanishes
The current email campaign builds on an earlier PayPal based phishing pattern that has been circulating among iPhone owners. Alerts aimed at all 1.8b iPhone users describe how criminals send what look like PayPal receipts for high value purchases, complete with a callback number, then use the ensuing conversation to convince victims that their accounts have been compromised and must be “secured” by moving funds or sharing one time passcodes, a flow laid out in detailed bank alerts. One report notes that the attackers wanted victims to call back, where they would be told their accounts had been hacked and then guided into actions that actually handed control to the criminals, a pattern repeated in separate descriptions.
Once scammers have access to Apple Pay or linked cards, the money can move quickly. Security write ups describe how a worrying Apple phishing scam is targeting users’ Apple Pay details by claiming that large transactions have been placed on users’ accounts and urging them to respond, a technique that has already been tied to unauthorized charges and emptied balances in case studies. If victims notice suspicious Apple Pay activity after the fact, consumer advocates advise that they begin by checking the Wallet app for the suspicious transaction and confirm the charge details, then contact their bank or card issuer immediately to dispute the charge, a process summarized in dispute guides that note you can begin by checking the Wallet and then next contact support to improve your chances of reversing fraudulent payments, including references to support numbers like 1 866 542 8909 in some guides.
Red flags, real world examples and how to respond
Several consistent warning signs have emerged across these scams, and learning them is one of the most effective defenses. Cybersecurity experts are warning iPhone users about a new email and texting scam that abuses Apple Pay branding, noting that online searches of the included phone numbers often return unrelated results such as public health or addiction support pages rather than Apple support contacts, a discrepancy that should immediately raise suspicion according to detailed analyses. Follow up coverage has emphasized that online searches of those same phone numbers often return unrelated results rather than Apple support contacts, reinforcing that any message instructing you to call an unfamiliar number should be treated with extreme caution, a point repeated in separate reports.
Financial institutions are echoing that advice, warning customers that their defense is simple but strict: your first move should be to ignore any phone number provided in a suspicious message and instead contact your financial institution using a number you already trust, with one credit union bluntly advising, your defense is, do not call phone numbers provided to you in messages like these and instead contact your bank directly, guidance captured in consumer alerts that stress, your best protection is to not respond and to contact your bank yourself, as summarized in Your security tips. Broader coverage aimed at all 1.8 billion iPhone users has urged people to be cautious of any unsolicited email, text or call that claims to be from Apple or a payment provider and asks for sensitive information, noting that Apple users should be vigilant because criminals are constantly looking for ways to go around Apple’s security measures, a message repeated in multiple warnings.
More from Morning Overview
*This article was researched with the help of AI, with human editors creating the final content.
