Scammers exploit Apple Support system to create convincing fake alerts

New phishing scam is getting a lot of attention because it uses genuine Apple support tickets to trick people into giving up their accounts. Broadcom's Eric Moret recounted how he nearly lost his entire Apple account after trusting what appeared to be an official message. He described the entire experience in a detailed post on Medium, where he described the entire scam step by step.

What makes this scheme stand out is that the scammers relied on Apple's own support system to make their posts appear legitimate. They have created a seamless and professional experience from the first alert to the last phone call. Here's how the scam unfolded.

Subscribe to my FREE CyberGuy Report
Get my best tech tips, breaking security alerts, and exclusive offers straight to your inbox. Plus, you'll get instant access to my ultimate scam survival guide – free when you join my CYBERGUY.COM newsletter

The #1 Google Search Scam Everyone Falls For

How the scam starts

The sea initially received a stream of warnings. These included two-factor authentication notifications claiming that someone was trying to access his iCloud account. A few minutes later, he received a call from calm and responsive people who claimed to be Apple agents ready to solve the problem.

The highlight is how convincing this whole setup was. Fraudsters were able to exploit a vulnerability in Apple's support system that allows anyone to create a genuine support ticket without verification. They opened a real case with Apple support in his name, which triggered official emails from the Apple domain. This instantly inspired confidence and lowered Mora's guard.

How scammers gained access to your account

During the 25-minute call, the fake agents told Mora what they said would protect his account. They walked him down the steps to throw him off iCloud password. They also told him that a citation would follow so that he could close the case.

This link took him to a fake website called Apple Dot Com. The page looked official and claimed that his account was protected. He was then asked to enter a six-digit code sent via text message to complete the process.

When Moret entered the code, the scammers got exactly what they needed to log into his account.

He then received a warning that his Apple ID had been used to sign into a Mac mini that he didn't own. This confirmed the takeover attempt. Although the scammer on the phone said it was normal, he trusted his instincts. He reset his password again, which kicked them out and stopped the attack.

BEWARE OF FAKE CREDIT CARD ACCOUNT LIMIT SCAM

How to Protect Yourself from Apple Support Ticket Scams

This type of scam works because it appears real. Messages appear formal and callers appear prepared. However, you can stay safer by watching for signs that something is wrong.

1) Check support tickets in your Apple account.

The scammers created a real-looking ticket to make the whole process look legitimate. You can confirm that this is real by contacting Apple directly. Sign in to appleid.apple.com or open the Apple Support app to view your recent cases. If the case number is not listed there, the message is fake, even if the email came from the Apple domain.

2) Hang up and call Apple yourself.

Never stay in a relationship that you did not initiate. Scammers rely on long conversations to gain trust and get you to make quick decisions. Hang up immediately and call Apple Support at 1-800-275-2273 or via Support application. A real agent will quickly confirm that something is wrong.

3) Check your Apple ID device list.

If something doesn't look right, look at the devices that are signed into your account. Go to Settingstouch your Name and scroll to see all devices linked to your Apple ID. Remove anything you don't recognize. This step can quickly stop intruders if they manage to get in.

4) Never share verification codes.

No real customer support agent will ever ask for your two-factor authentication codes. Consider any request for these codes as a serious warning.

5) Check each link carefully.

Look closely at the URLs. Fake sites often add extra words or change formatting to make them look real. Apple will never send you to a site like appeal apple dot com.

FRAUDERS USE ICLOUD CALENDAR TO SEND PHISHING EMAILS

6) Use powerful antivirus software.

Powerful antivirus software can detect dangerous links, unsafe sites, and fake support messages before you even click on them. Anti-phishing tools are especially important in scams like these, as attackers have used a fake website and real ticket emails to trick victims.

The best way to protect yourself from malicious links that install malware and potentially access your personal information is to install powerful antivirus software on all your devices. This protection can also alert you to phishing emails and ransomware, keeping your personal information and digital assets safe.

Get my picks for 2025's top antivirus protection winners for your Windows, Mac, Android, and iOS devices at Cyberguy.com

7) Use a data removal service

Data brokers collect your phone number, home address, email address and other data, which scammers use to personalize attacks. A data removal service can remove much of this information from broker sites, making you a harder target for social engineering attempts like the one described in this article.

While no service can guarantee complete removal of your data from the internet, a data removal service is indeed a smart choice. They don't come cheap, and neither does your privacy. These services do all the work for you, actively monitoring and systematically removing your personal information from hundreds of websites. This is what gives me peace of mind and has proven to be the most effective way to erase your personal data from the internet. By limiting the information available, you reduce the risk that scammers will link leaked data to information they can find on the dark web, making it harder for them to target you.

Check out my top data removal services and get a free scan to see if your personal information has already been published online by visiting Cyberguy.com

Get a free scan to see if your personal information has already been published online: Cyberguy.com

8) Enable reliable multi-level protection.

Hold two-factor authentication (2FA) for each main account. This creates a barrier that quickly stops intruders.

9) Slow down before you react

Scammers want you to panic. Pause before you act. Trust your instincts when things feel rushed or strange. A small delay can save your entire account.

CLICK HERE TO DOWNLOAD THE FOX NEWS APP

Kurt's key takeaways

This scam shows how convincing criminals can be when they use real systems. Even cautious users can fall for messages that look official and sound professional. The best defense is to stay alert and wait a minute before reacting to something unexpected. When you slow down, double check support tickets, and never share verification codes, you become much harder to scam. Adding Type Layers antivirus protection Data deletion services also give you more control over what attackers can access. These simple habits can help stop even the most sophisticated scams before they ever hit your accounts.

What would you do if you received a customer service call and it seemed real but wrong? Let us know by writing to us at Cyberguy.com

Subscribe to my FREE CyberGuy Report
Get my best tech tips, breaking security alerts, and exclusive offers straight to your inbox. Plus, you'll get instant access to my ultimate scam survival guide – free when you join my CYBERGUY.COM newsletter

Copyright CyberGuy.com 2025. All rights reserved.