People may receive an email that claims to be from the iTunes store. I got it a couple of days ago. The email points out that an individual’s iTunes account has been used to make possibly fraudulent purchases, and it may even include an invoice to show the person what purchases have been made.
Naturally the scammer invites people to simply click on a link to fix things and solve the problem, but the link leads to a site that looks like iTunes (sort-of) but is fake. The person is then asked for account info, etc.
Don’t be fooled!
Here’s what Apple has on its website about this kind of Phishing
Phishing refers to an email that attempts to fraudulently acquire personal information from you, such as your Apple ID, password and/or credit card information. On the surface, the email may appear to be from a legitimate company or individual, but it’s not.
As a general rule, never send credit card information, account passwords, or extensive personal information in an email unless you verify that the recipient is who they claim to be. Many companies have policies that state they will never solicit such information from customers by email.
If you receive what you believe to be a phishing email purporting to be from Apple, please send it to email@example.com, a monitored email inbox, which does not generate individual email replies.The iTunes Store will never ask you to provide personal information or sensitive account information (such as passwords or credit card numbers) via email.
The iTunes Store will never ask you to provide personal information or sensitive account information (such as passwords or credit card numbers) via email.