Real Apple Support Emails Used in New Phishing Scam

A new phishing scam is getting a lot of attention because it uses real Apple support tickets to trick people into abandoning their accounts. Broadcom’s Eric Moret shared how he almost lost his entire Apple account after trusting what seemed like an official communication. He described the entire experience in a detailed post on Medium, where he explained the scam step by step.

This scheme stands out because the scammers relied on Apple’s own support system to make their messages appear legitimate. They created an experience that felt polished and professional from the first alert to the final phone call. Here’s how the scam unfolded.

Sign up to receive my FREE CyberGuy report
Get my best tech tips, urgent security alerts, and exclusive offers delivered right to your inbox. Plus, you’ll get instant access to my Ultimate Guide to Surviving Scams, free when you join me CYBERGUY.COM fact sheet

THE #1 GOOGLE SEARCH SCAM EVERYONE FALLS INTO

How the scam starts

For the first time, Moret received an avalanche of alerts. These included two-factor authentication notifications claiming that someone was trying to access your iCloud account. Within minutes, he received phone calls from calm, helpful people claiming to be Apple agents ready to fix the problem.

The twist is how compelling the whole setup felt. The scammers were able to exploit a flaw in Apple’s support system that allows anyone to create a genuine support ticket without verification. They opened a real Apple support case in his name, which prompted official emails from an Apple domain. This generated instant trust and lowered Moret’s guard.

How scammers gained access to the account

During a 25-minute call, the fake agents walked Moret through what they said would protect his account. They explained the steps to reset your iCloud password. They also told him that a link would follow so he could close the case.

That link took him to a fake site called Appeal Apple Dot Com. The page looked official and claimed that his account was being secured. He then told her to enter a six-digit code sent via text message to finish the process.

When Moret entered that code, the scammers got exactly what they needed to log into his account.

Then he received an alert that his Apple ID had been used to sign in to a Mac mini that he didn’t own. This confirmed the takeover attempt. Although the scammer on the phone said this was normal, he trusted his instincts. He reset their password again, which kicked them out and stopped the attack.

BEWARE OF FAKE CREDIT CARD ACCOUNT RESTRICTION SCAMS

How to Protect Yourself from Apple Support Ticket Scam

This type of scam works because it looks real. The messages seem official and the callers seem trained. Still, you can be safer if you watch for signs that something is wrong.

1) Check support tickets within your Apple account

The scammers created a real-looking ticket to make the entire experience seem legitimate. You can confirm what is real by checking with Apple directly. Sign in to appleid.apple.com or open the Apple Support app to view your recent cases. If the case number doesn’t appear there, the message is fake, even if the email comes from an Apple domain.

2) Hang up and call Apple yourself

Never stay on a call you haven’t started. Scammers rely on long conversations to build trust and pressure you into making quick decisions. Hang up immediately and call Apple Support directly at 1-800-275-2273 or through the Support app. A real agent will quickly confirm if something is wrong.

3) Check your Apple ID device list

If something doesn’t work, look at the devices that are logged into your account. Gonna Settingstouch your name and scroll to see all devices linked to your Apple ID. Delete everything you don’t recognize. This step can quickly stop attackers if they managed to get inside.

4) Never share verification codes

No real support agent will ever ask you for your two-factor authentication codes. Treat any request for these codes as an important warning.

5) Check each link carefully

Look closely at the URLs. Fake sites often add extra words or change formatting to make them look real. Apple will never send you to a site like Apple Dot Com.

SCAMMERS ARE ABUSEING ICLOUD CALENDAR TO SEND PHISHING EMAILS

6) Use powerful antivirus software

Powerful antivirus software can detect dangerous links, unsafe sites, and fake support messages before you touch them. Anti-phishing tools are especially important in scams like this, as attackers used a fake site and real ticket emails to trick victims.

The best way to protect yourself from malicious links that install malware and potentially access your private information is to have powerful antivirus software installed on all your devices. This protection can also alert you to phishing emails and ransomware scams, keeping your personal information and digital assets safe.

Get my picks for the best antivirus protection winners of 2025 for your Windows, Mac, Android, and iOS devices at Cyberguy.com

7) Use a data deletion service

Data brokers collect your phone number, home address, email, and other details that scammers use to personalize attacks. A data deletion service can delete much of that information from brokers’ sites, making you a more difficult target for social engineering attempts like the one described in this article.

While no service can guarantee complete removal of your data from the Internet, a data deletion service is truly a smart choice. They are not cheap, and neither is your privacy. These services do all the work for you by actively monitoring and systematically deleting your personal information from hundreds of websites. It’s what gives me peace of mind and has proven to be the most effective way to delete your personal data from the Internet. By limiting the information available, you reduce the risk of scammers cross-referencing leak data with information they can find on the dark web, making it harder for them to target you.

Check out my top picks for data removal services and get a free scan to find out if your personal information is already available on the web by visiting Cyberguy.com

Get a free scan to find out if your personal information is already available on the web: Cyberguy.com

8) Activate strong multi-layer protection

Keep two-factor authentication (2FA) turned on for all primary accounts. This creates a barrier that quickly stops attackers.

9) Slow down before reacting

Scammers want you to panic. Pause before acting. Trust your instincts when something feels rushed or strange. A brief delay could save your entire account.

CLICK HERE TO DOWNLOAD THE News APP

Kurt’s Key Takeaways

This scam shows how convincing criminals can be when exploiting real systems. Even careful users can fall for official-looking messages and professional-sounding calls. The best defense is to stay alert and take a moment before responding to anything unexpected. When you slow down, re-verify support tickets, and never share verification codes, you become much harder to fool. Adding layers like antivirus protection and data wipe services also gives you more control over what attackers can access. These simple habits can stop even the most sophisticated scams before they reach your accounts.

What would you do if you received a tech support call that seemed real but not correct? Let us know by writing to us at Cyberguy.com

Sign up to receive my FREE CyberGuy report
Get my best tech tips, urgent security alerts, and exclusive offers delivered right to your inbox. Plus, you’ll get instant access to my Ultimate Guide to Surviving Scams, free when you join me CYBERGUY.COM fact sheet

Copyright 2025 CyberGuy.com. All rights reserved.