Fake Apple Executive Profile Cloning Scam
Scammers clone the LinkedIn or email identity of Apple executives or the Apple brand itself to contact suppliers, partners, and employees with fraudulent purchase orders, wire transfer requests, or credential demands.
Part of: Profile Cloning & Impersonation Scams
Last reviewed: 8 June 2026
Apple is one of the world's most prominent technology companies, and its executives are widely profiled in public media. Scammers exploit this public visibility by creating social media profiles or email accounts that impersonate Apple's CFO, VP of Operations, or regional managers, then use these identities to target Apple's known business partners, suppliers, or employees.
Because Apple maintains strict communications security internally, external partners who receive an unexpected but seemingly authoritative message from an Apple executive may not question it — particularly if the request references a real Apple project or event.
This form of brand impersonation combines executive identity fraud with the credibility of the Apple brand, making it a variant of business email compromise (BEC) with a high-value target profile.
How this scam works on the Apple brand
A supplier to Apple receives a LinkedIn message from an account using the name and headshot of a known Apple supply chain director. The message mentions a specific product line, references a recent Apple announcement, and asks the supplier to complete an urgent component order via a link to a fake Apple procurement portal, where banking or credential details are requested.
In an email variant, a spoofed message from a domain such as apple-corp-purchasing.com requests an invoice be redirected to a new bank account, citing a routine financial system upgrade — a classic invoice redirection tactic using the Apple brand to add credibility.
Employees receive messages impersonating Apple's HR team asking for banking details to process a payroll update.
Common red flags
- Genuine Apple business communications arrive from @apple.com email addresses — any other domain is suspect.
- An unsolicited LinkedIn message from an apparent Apple executive requesting urgent financial or credential actions should be verified by phone using a number from Apple's official website.
- Apple procurement portals are internal systems — suppliers are not directed to new external URLs by unsolicited messages.
- Requests to change banking details via an email or LinkedIn message, even from an apparent Apple contact, require in-person or phone verification.
- The LinkedIn profile was recently created, has few connections, and references public information rather than genuine relationship history.
- The request emphasises confidentiality or asks the recipient not to discuss the request with colleagues.
How to protect yourself
- Verify any request from an apparent Apple contact by calling the Apple representative on a number obtained from apple.com — not a number provided in the message.
- Implement dual-approval controls for any bank account change or high-value purchase order regardless of the apparent sender.
- Brief finance and procurement teams on executive impersonation and BEC tactics.
- Report suspicious LinkedIn profiles claiming to be Apple employees to LinkedIn's reporting tools.
- If a payment was made, contact your bank's fraud team immediately.
How to report it
- Report the fraudulent profile to LinkedIn via the Report function on the profile page.
- Report financial fraud to the FBI IC3 at ic3.gov.
- Report to the FTC at ReportFraud.ftc.gov.
- UK organisations: report to Action Fraud at actionfraud.police.uk and the NCSC at ncsc.gov.uk.
Frequently asked questions
How can I verify that someone contacting me really is an Apple employee?
Verify by calling the Apple representative through a number from apple.com/contact, or by emailing an address you have previously exchanged messages with. Do not use contact details provided in the suspicious message itself.
What is business email compromise and how does the Apple brand make it more dangerous?
BEC is a scam in which an attacker impersonates a trusted business contact to authorise fraudulent payments or data transfers. The Apple brand makes it more dangerous because suppliers and partners may be eager to maintain a relationship with Apple and may act quickly without proper verification.
Apple asked our company to update our payment details via a new portal link — should we?
Do not follow the link. Call your established Apple account manager at a number from apple.com to verify whether the request is genuine. Legitimate payment detail changes go through formal procurement channels with verified contacts.