Apple Impersonation Scams
Fraudsters impersonate Apple through fake security alerts, phishing emails about Apple ID, and bogus support calls. The real Apple will never call you unsolicited or ask you to share a verification code.
Last reviewed: 1 June 2026
Apple's reputation for security and privacy makes it a credible-sounding name to drop when a scammer wants to frighten you into acting quickly. Fake 'Apple ID suspended' emails, pop-ups claiming your iPhone has been compromised, and calls from supposed Apple Support are all common approaches.
The goal is usually to obtain your Apple ID credentials, persuade you to share a two-factor authentication code, or trick you into paying for fake technical support.
Apple is the victim of this impersonation. Apple has published guidance on recognising these scams and has robust processes for reporting them. Knowing the lines Apple genuinely will not cross makes these approaches much easier to spot.
How scammers impersonate it
- Sending phishing emails with Apple branding warning your Apple ID has been locked or compromised
- Creating fake Apple sign-in pages to harvest credentials
- Calling and claiming to be Apple Support about suspicious activity on your account
- Displaying browser or iOS-style pop-ups claiming your device has a virus
- Sending texts claiming your Apple Pay or iCloud storage is about to be charged
- Using Apple logos and fonts in emails that closely resemble genuine Apple communications
What the real organisation never does
- Call you unsolicited about a security issue with your Apple account
- Ask you to share a two-factor authentication or verification code with anyone — including Apple
- Ask for payment in gift cards to resolve a billing or security issue
- Ask for your Apple ID password over the phone
- Send an alert via a pop-up with a phone number to call
- Ask you to disable security features to fix a problem
Common red flags
- Unsolicited call claiming to be Apple Support
- Email with a link to sign in that does not go to apple.com
- Request to share a verification code sent to your device
- Urgency — 'your Apple ID will be permanently disabled in 12 hours'
- Request for gift card payment
- Pop-up claiming your iPhone or Mac has a virus with a number to call
- Sender email address does not match @apple.com exactly
Sanitized example messages
Illustrative, sanitized examples. Personal details are replaced with placeholders such as [phone number] and [fake link].
Email: 'Your Apple ID has been locked. Verify your identity at [fake link] within 24 hours to restore access.'
Call: 'This is Apple Support — we detected suspicious purchases on your account. To reverse them, read me the code that was just sent to your phone.'
Text: 'Apple: Your iCloud storage will renew at [amount] today. To cancel, visit [fake link].'
How to verify
- Check your Apple ID status directly at appleid.apple.com — type the address yourself
- Go to the App Store or iCloud settings on your device to see genuine billing information
- Never share a two-factor code with anyone, even someone claiming to be Apple
- If you want to contact Apple Support, initiate the contact yourself via apple.com/support
- Apple's genuine emails come from @apple.com — check the full sender address carefully
What to do if you're targeted
- Do not share any verification codes or passwords
- If you believe your Apple ID was compromised, change your password at appleid.apple.com
- Report phishing emails by forwarding them to [email protected]
- Contact your bank if any payment details were shared
Frequently asked questions
Apple called me — how do I know it was a scam?
Apple does not make unsolicited outbound calls to customers about security issues. If you receive such a call, hang up and contact Apple yourself through apple.com/support.
I gave them the two-factor code. What now?
Change your Apple ID password immediately at appleid.apple.com, sign out of all devices, and review recent purchases. Contact Apple Support to report the compromise.
Can a scam pop-up actually damage my iPhone?
A pop-up on its own cannot harm your device. Close the browser tab or app and do not call any number shown. If in doubt, restart your device.