Consumer advocacy groups are alerting the massive community of 1.8 billion iPhone users about a troubling email scam designed to steal sensitive information and financial details.
The scam typically presents itself as a believable notification suggesting that a user’s iCloud storage is full. This misleading message urges individuals to upgrade their plans, warning that they might lose significant data, including cherished photos.
Within the email, there’s a link that claims to offer an upgrade to a more spacious plan. The email cleverly mimics Apple’s official communications and is signed off by the “iCloud Team.”
However, clicking on the supposed upgrade link often redirects users to a fraudulent website aimed at harvesting personal and banking information.
When unsuspecting users attempt to enter their payment information, their data can be stolen and sold on the dark web, potentially for malicious uses. Some victims report that certain messages ramp up the urgency, warning that their iCloud accounts will be terminated within 48 hours unless they act quickly.
“It’s crucial for every Apple user to be aware of this dangerous scam,” emphasized one independent consumer group.
They note that these deceptive emails threaten users with dire consequences, such as the deletion of all their photos.
Interestingly, one commenter noted, “I receive these emails almost daily, and I don’t even own an iPhone.” Another echoed the sentiment, stating, “Digitalization has made it terribly easy for criminals to exploit us.”
Experts remind users that when Apple has account issues, they usually instruct customers to look in “Settings” and never provide payment links in emails.
In light of this, the US Federal Trade Commission has advised users against clicking any links and urged them to reach out directly to Apple if they receive such emails.
One potential victim shared a screenshot of their overflowing email inbox featuring a message titled “iCloud storage full,” which said their storage capacity had been exceeded, and as a result, their data was no longer backed up.
This increase in alarming messages indicates that scammers are evolving their tactics, becoming more aggressive in order to provoke immediate responses from users.
Experts pointed out that the fraudulent email originated from Noreply@email.apple.com. They highlighted that legitimate Apple addresses look different, such as no_reply@email.apple.com, noreply@apple.com, and noreply@insideicloud.icloud.com.
Furthermore, a consumer advocacy organization recently warned about similar deceptive messages featuring fake “Apple Pay fraud alerts,” alongside high-pressure phone calls aimed at tricking victims into revealing personal information.
In one instance, a recipient received a text regarding a suspicious Apple Pay charge, prompting them to call a number for assistance. Unfortunately, they ended up speaking with someone pretending to be an investigator.
This individual was encouraged to withdraw $15,000 from their bank account, but fortunately, the teller recognized the scam and advised them to hang up.
The Consumer Affairs Agency cautions that if potential victims were to call the number or click the link, they could inadvertently connect with individuals impersonating Apple Support or even law enforcement.
Experts emphasize that if you receive any suspicious messages, it’s crucial not to click on any links or make any calls. Instead, verify by contacting your bank directly or checking your Apple Pay activity on your device. If you suspect you’ve been targeted, stop any transactions immediately and inform your bank or card issuer.
