A Suspicious Transaction Report in Apple Pay Is Likely a Scam.
A new phishing scam is targeting Apple Pay users, tricking them into calling or emailing support using fake phone numbers, promising to reveal their passwords and credit card numbers. AppleInsider was first to report the scam , which features warnings that are suspiciously similar to official Apple messages. While AppleInsider’s report doesn’t cite specific user complaints, it does provide screenshot examples, and messages matching AppleInsider’s description have appeared on Reddit and official Apple support forums over the past 30 days.
Fraudulent messages can be sent via email or SMS and typically warn the recipient of a potentially fraudulent purchase made using Apple Pay at a physical Apple Store, offering a phone number or email address to contact regarding the issue. According to AppleInsider, the message may also include a case ID, timestamp, or other technical details to make it appear more credible. For example, one Reddit user suggested the scam could be a genuine SMS from Apple because it contained the official-sounding phrase, “If this happened to you, no action is required.”
However, inconsistencies persist, such as scammers often referring to Apple accounts as Apple IDs, which is now outdated. Furthermore, while emails may have an official appearance, creating the impression that they are sent directly from Apple, errors can still remain. For example, an email might begin with “Hello, {Name}” instead of addressing the recipient’s real name. It may be sent from a fake address, but even if the address appears legitimate, such as ” [email protected] ,” this is not conclusive evidence of its authenticity, as scammers can spoof email addresses . Overall, the goal appears to be to entice the recipient to take action by using an urgent tone, while the Apple logo and professional writing style obscure any clues about who is actually sending these notifications.
How can I tell if an Apple Pay SMS or email is a scam?
If you receive any text messages or emails about Apple Pay activity, they’re likely fake—Apple doesn’t communicate with its users this way. Instead of sending text messages or emails, communication occurs directly through the Wallet app. Furthermore, Apple Pay serves as a payment method, not a standalone credit or debit account. Therefore, if fraudulent transactions are detected, notifications will come from your bank or credit card provider, not Apple itself.
However, it’s also worth paying attention to any warning signs. Look for small typos or unusual domain names, which can help identify a fake message, even if their absence doesn’t indicate the message’s authenticity. Also, instead of calling the phone numbers listed, search for them online to see if they’ve been linked to a scam. In any case, don’t respond to such notifications and don’t provide any information (such as passwords, which Apple will never request) if you’ve already accidentally contacted them. There are more reliable ways to verify your Apple Pay activity.
What to do if you suspect you have been scammed?
If you believe a message you received is invalid, it’s best to ignore it and verify it yourself. Instead of responding to a suspicious message or email directly or calling the phone numbers listed, double-check all statements through Apple’s official channels. You can view your recent Apple Pay purchases in the Wallet app by tapping one of your registered cards, then opening the Settings app and going to Media & Purchases > View Account > Purchase History. You’ll see all your recent App Store purchases. If you don’t see a transaction mentioned in one of these notifications in your official payment history, it likely never occurred.
If you’re still unsure, you have options. Instead of contacting the email or phone number listed in the potentially scam notification, start a new message directly with official Apple support. You can find the correct contact information, including the official Apple phone number for your region, on Apple’s website . Apple will be able to determine whether any suspicious activity has been observed on your account.
Finally, if you’re certain the message is fraudulent, you can forward it (or simply report it if forwarding isn’t possible) to Apple to help them block it. The specific email address you’ll need will depend on the type of message, and you can find all available options onthe Apple Support website under “How to Report Suspicious Emails, Messages, and Calls.” After forwarding the message to the appropriate channels, delete it from your inbox to avoid accidentally clicking compromised links. As an additional security measure, consider changing your Apple account password or using a password manager .