{"id":2091,"date":"2019-04-06T19:33:55","date_gmt":"2019-04-06T19:33:55","guid":{"rendered":"http:\/\/www.syyhoaxanalyzer.com\/?p=2091"},"modified":"-0001-11-30T00:00:00","modified_gmt":"-0001-11-29T17:00:00","slug":"iTunes-Purchase-Receipt-Phishing-Scam","status":"publish","type":"post","link":"https:\/\/www.syyhoaxanalyzer.com\/?p=2091","title":{"rendered":"iTunes Purchase Receipt Phishing Scam"},"content":{"rendered":"<div>\n<h2>Outline<\/h2>\n<p>Email purporting to be from the iTunes store lists orders supposedly made via the user&#8217;s Apple account. The email informs users that, if they suspect that their account has been hijacked, they should click a link and supply information to rectify the issue. \u00a0 <\/p>\n<p><script async src=\"\/\/pagead2.googlesyndication.com\/pagead\/js\/adsbygoogle.js\"><\/script><br \/>\n<!-- HS Net Top Content Responsive --><br \/>\n<ins class=\"adsbygoogle\"\n     style=\"display:block\"\n     data-ad-client=\"ca-pub-0355887770822260\"\n     data-ad-slot=\"4870821038\"\n     data-ad-format=\"auto\"><\/ins><br \/>\n<script>\n(adsbygoogle = window.adsbygoogle || []).push({});\n<\/script><\/p>\n<h2>Brief Analysis<\/h2>\n<p>The email is not from iTunes and the listed order details are fake. Those panicked into clicking the link will be taken to a bogus website that asks them to supply personal and financial information. This information will be collected by criminals and used to commit fraud and identity theft.<\/p>\n<h2>Examples<\/h2>\n<div class=\"example\"><a href=\"https:\/\/www.hoax-slayer.net\/wp-content\/uploads\/2014\/04\/itunes-purchase-receipt-phishing-scam-5.jpg\" data-rel=\"penci-gallery-image-content\" ><img loading=\"lazy\" decoding=\"async\" data-attachment-id=\"22661\" data-permalink=\"https:\/\/www.hoax-slayer.net\/itunes-purchase-receipt-phishing-scam\/itunes-purchase-receipt-phishing-scam-5\/\" data-orig-file=\"https:\/\/www.hoax-slayer.net\/wp-content\/uploads\/2014\/04\/itunes-purchase-receipt-phishing-scam-5.jpg\" data-orig-size=\"400,439\" data-comments-opened=\"1\" data-image-meta=\"{&quot;aperture&quot;:&quot;0&quot;,&quot;credit&quot;:&quot;&quot;,&quot;camera&quot;:&quot;&quot;,&quot;caption&quot;:&quot;&quot;,&quot;created_timestamp&quot;:&quot;0&quot;,&quot;copyright&quot;:&quot;&quot;,&quot;focal_length&quot;:&quot;0&quot;,&quot;iso&quot;:&quot;0&quot;,&quot;shutter_speed&quot;:&quot;0&quot;,&quot;title&quot;:&quot;&quot;,&quot;orientation&quot;:&quot;0&quot;}\" data-image-title=\"itunes-purchase-receipt-phishing-scam-5\" data-image-description=\"\" data-medium-file=\"https:\/\/www.hoax-slayer.net\/wp-content\/uploads\/2014\/04\/itunes-purchase-receipt-phishing-scam-5-273x300.jpg\" data-large-file=\"https:\/\/www.hoax-slayer.net\/wp-content\/uploads\/2014\/04\/itunes-purchase-receipt-phishing-scam-5.jpg\" class=\"aligncenter size-full wp-image-22661\" src=\"https:\/\/www.hoax-slayer.net\/wp-content\/uploads\/2014\/04\/itunes-purchase-receipt-phishing-scam-5.jpg\" alt=\"iTune Receipt Phishing Scam 3\" width=\"400\" height=\"439\" srcset=\"https:\/\/www.hoax-slayer.net\/wp-content\/uploads\/2014\/04\/itunes-purchase-receipt-phishing-scam-5.jpg 400w, https:\/\/www.hoax-slayer.net\/wp-content\/uploads\/2014\/04\/itunes-purchase-receipt-phishing-scam-5-273x300.jpg 273w\" sizes=\"(max-width: 400px) 100vw, 400px\" \/><\/a><\/div>\n<p>&nbsp;<\/p>\n<div class=\"example\"><a href=\"https:\/\/www.hoax-slayer.net\/wp-content\/uploads\/2014\/04\/itunes-purchase-receipt-phishing-scam-4.jpg\" data-rel=\"penci-gallery-image-content\" ><img loading=\"lazy\" decoding=\"async\" data-attachment-id=\"22660\" data-permalink=\"https:\/\/www.hoax-slayer.net\/itunes-purchase-receipt-phishing-scam\/itunes-purchase-receipt-phishing-scam-4\/\" data-orig-file=\"https:\/\/www.hoax-slayer.net\/wp-content\/uploads\/2014\/04\/itunes-purchase-receipt-phishing-scam-4.jpg\" data-orig-size=\"563,407\" data-comments-opened=\"1\" data-image-meta=\"{&quot;aperture&quot;:&quot;0&quot;,&quot;credit&quot;:&quot;&quot;,&quot;camera&quot;:&quot;&quot;,&quot;caption&quot;:&quot;&quot;,&quot;created_timestamp&quot;:&quot;0&quot;,&quot;copyright&quot;:&quot;&quot;,&quot;focal_length&quot;:&quot;0&quot;,&quot;iso&quot;:&quot;0&quot;,&quot;shutter_speed&quot;:&quot;0&quot;,&quot;title&quot;:&quot;&quot;,&quot;orientation&quot;:&quot;0&quot;}\" data-image-title=\"itunes-purchase-receipt-phishing-scam-4\" data-image-description=\"\" data-medium-file=\"https:\/\/www.hoax-slayer.net\/wp-content\/uploads\/2014\/04\/itunes-purchase-receipt-phishing-scam-4-300x217.jpg\" data-large-file=\"https:\/\/www.hoax-slayer.net\/wp-content\/uploads\/2014\/04\/itunes-purchase-receipt-phishing-scam-4.jpg\" class=\"aligncenter size-full wp-image-22660\" src=\"https:\/\/www.hoax-slayer.net\/wp-content\/uploads\/2014\/04\/itunes-purchase-receipt-phishing-scam-4.jpg\" alt=\"iTune Receipt Phishing Scam 1\" width=\"563\" height=\"407\" srcset=\"https:\/\/www.hoax-slayer.net\/wp-content\/uploads\/2014\/04\/itunes-purchase-receipt-phishing-scam-4.jpg 563w, https:\/\/www.hoax-slayer.net\/wp-content\/uploads\/2014\/04\/itunes-purchase-receipt-phishing-scam-4-300x217.jpg 300w, https:\/\/www.hoax-slayer.net\/wp-content\/uploads\/2014\/04\/itunes-purchase-receipt-phishing-scam-4-500x361.jpg 500w\" sizes=\"(max-width: 563px) 100vw, 563px\" \/><\/a><\/div>\n<p>&nbsp;<\/p>\n<div class=\"example\">\n<p><strong>Subject:<\/strong><strong> \u00a0Purchase No: 875097091830<\/strong><\/p>\n<p>If you did not order the above products and suspect your account has been hijacked kindly visit the link below.<\/p>\n<p>[Link Removed]<\/p>\n<p>You will be asked some specific questions about you and your financial data to prove you actually owned the account.<\/p>\n<p><a href=\"https:\/\/www.hoax-slayer.net\/wp-content\/uploads\/2014\/04\/itunes-purchase-receipt-phishing-scam-1.jpg\" data-rel=\"penci-gallery-image-content\" ><img loading=\"lazy\" decoding=\"async\" data-attachment-id=\"22659\" data-permalink=\"https:\/\/www.hoax-slayer.net\/itunes-purchase-receipt-phishing-scam\/itunes-purchase-receipt-phishing-scam-1\/\" data-orig-file=\"https:\/\/www.hoax-slayer.net\/wp-content\/uploads\/2014\/04\/itunes-purchase-receipt-phishing-scam-1.jpg\" data-orig-size=\"590,563\" data-comments-opened=\"1\" data-image-meta=\"{&quot;aperture&quot;:&quot;0&quot;,&quot;credit&quot;:&quot;&quot;,&quot;camera&quot;:&quot;&quot;,&quot;caption&quot;:&quot;&quot;,&quot;created_timestamp&quot;:&quot;0&quot;,&quot;copyright&quot;:&quot;&quot;,&quot;focal_length&quot;:&quot;0&quot;,&quot;iso&quot;:&quot;0&quot;,&quot;shutter_speed&quot;:&quot;0&quot;,&quot;title&quot;:&quot;&quot;,&quot;orientation&quot;:&quot;0&quot;}\" data-image-title=\"itunes-purchase-receipt-phishing-scam-1\" data-image-description=\"\" data-medium-file=\"https:\/\/www.hoax-slayer.net\/wp-content\/uploads\/2014\/04\/itunes-purchase-receipt-phishing-scam-1-300x286.jpg\" data-large-file=\"https:\/\/www.hoax-slayer.net\/wp-content\/uploads\/2014\/04\/itunes-purchase-receipt-phishing-scam-1.jpg\" class=\"aligncenter size-full wp-image-22659\" src=\"https:\/\/www.hoax-slayer.net\/wp-content\/uploads\/2014\/04\/itunes-purchase-receipt-phishing-scam-1.jpg\" alt=\"iTune Receipt Phishing Scam 1\" width=\"590\" height=\"563\" srcset=\"https:\/\/www.hoax-slayer.net\/wp-content\/uploads\/2014\/04\/itunes-purchase-receipt-phishing-scam-1.jpg 590w, https:\/\/www.hoax-slayer.net\/wp-content\/uploads\/2014\/04\/itunes-purchase-receipt-phishing-scam-1-300x286.jpg 300w, https:\/\/www.hoax-slayer.net\/wp-content\/uploads\/2014\/04\/itunes-purchase-receipt-phishing-scam-1-500x477.jpg 500w, https:\/\/www.hoax-slayer.net\/wp-content\/uploads\/2014\/04\/itunes-purchase-receipt-phishing-scam-1-585x558.jpg 585w\" sizes=\"(max-width: 590px) 100vw, 590px\" \/><\/a><\/p>\n<\/div>\n<p>&nbsp;<\/p>\n<h2>Detailed Analysis<\/h2>\n<p>This email, which purports to be from the iTunes store, lists several items supposedly purchased by the recipient. The email advises that, if the recipient did not place the listed orders, he or she should click a link to deal with the suspected account hijacking. The message explains that the user must prove that he or she actually owns the &#8216;hijacked&#8217; account by supplying specific personal and financial data.<\/p>\n<p>The email is formatted to mirror a genuine iTunes message and includes the Apple logo. \u00a0<\/p>\n<p><script async src=\"\/\/pagead2.googlesyndication.com\/pagead\/js\/adsbygoogle.js\"><\/script><br \/>\n<ins class=\"adsbygoogle\"\n     style=\"display:block; text-align:center;\"\n     data-ad-format=\"fluid\"\n     data-ad-layout=\"in-article\"\n     data-ad-client=\"ca-pub-0355887770822260\"\n     data-ad-slot=\"9162856233\"><\/ins><br \/>\n<script>\n     (adsbygoogle = window.adsbygoogle || []).push({});\n<\/script><\/p>\n<p> However, the email is not from iTunes and the listed order details do not show real purchases. In fact, the email is a \u00a0<a href=\"https:\/\/www.hoax-slayer.net\/phishing-scams-anti-phishing-information\/\">phishing scam \u00a0<\/a>designed to extract a large amount of sensitive personal and financial information from victims.<\/p>\n<p>The criminals behind the scam hope that at least a few recipients will be panicked by the thought that their Apple account has been illegally used to rack up a sizable bill in their names and click the link as instructed.<\/p>\n<p>Those who do click the link will be taken to a bogus website tricked up to look like a genuine Apple login page. After logging in with their Apple ID, victims will be taken to a second fake page containing a form that requests their personal and financial data:<\/p>\n<p><a href=\"https:\/\/www.hoax-slayer.net\/wp-content\/uploads\/2014\/04\/itunes-purchase-receipt-phishing-scam-2.jpg\" data-rel=\"penci-gallery-image-content\" ><img loading=\"lazy\" decoding=\"async\" data-attachment-id=\"22662\" data-permalink=\"https:\/\/www.hoax-slayer.net\/itunes-purchase-receipt-phishing-scam\/itunes-purchase-receipt-phishing-scam-2\/\" data-orig-file=\"https:\/\/www.hoax-slayer.net\/wp-content\/uploads\/2014\/04\/itunes-purchase-receipt-phishing-scam-2.jpg\" data-orig-size=\"590,547\" data-comments-opened=\"1\" data-image-meta=\"{&quot;aperture&quot;:&quot;0&quot;,&quot;credit&quot;:&quot;&quot;,&quot;camera&quot;:&quot;&quot;,&quot;caption&quot;:&quot;&quot;,&quot;created_timestamp&quot;:&quot;0&quot;,&quot;copyright&quot;:&quot;&quot;,&quot;focal_length&quot;:&quot;0&quot;,&quot;iso&quot;:&quot;0&quot;,&quot;shutter_speed&quot;:&quot;0&quot;,&quot;title&quot;:&quot;&quot;,&quot;orientation&quot;:&quot;0&quot;}\" data-image-title=\"itunes-purchase-receipt-phishing-scam-2\" data-image-description=\"\" data-medium-file=\"https:\/\/www.hoax-slayer.net\/wp-content\/uploads\/2014\/04\/itunes-purchase-receipt-phishing-scam-2-300x278.jpg\" data-large-file=\"https:\/\/www.hoax-slayer.net\/wp-content\/uploads\/2014\/04\/itunes-purchase-receipt-phishing-scam-2.jpg\" class=\"aligncenter size-full wp-image-22662\" src=\"https:\/\/www.hoax-slayer.net\/wp-content\/uploads\/2014\/04\/itunes-purchase-receipt-phishing-scam-2.jpg\" alt=\"iTune Receipt Phishing Scam 4\" width=\"590\" height=\"547\" srcset=\"https:\/\/www.hoax-slayer.net\/wp-content\/uploads\/2014\/04\/itunes-purchase-receipt-phishing-scam-2.jpg 590w, https:\/\/www.hoax-slayer.net\/wp-content\/uploads\/2014\/04\/itunes-purchase-receipt-phishing-scam-2-300x278.jpg 300w, https:\/\/www.hoax-slayer.net\/wp-content\/uploads\/2014\/04\/itunes-purchase-receipt-phishing-scam-2-500x464.jpg 500w, https:\/\/www.hoax-slayer.net\/wp-content\/uploads\/2014\/04\/itunes-purchase-receipt-phishing-scam-2-585x542.jpg 585w\" sizes=\"(max-width: 590px) 100vw, 590px\" \/><\/a><\/p>\n<p>After supplying and submitting the requested information, users will be taken to a third fake page claiming that they have completed their &#8216;account verification&#8217; and payments for the bogus purchases have been refunded:<\/p>\n<p><a href=\"https:\/\/www.hoax-slayer.net\/wp-content\/uploads\/2014\/04\/itunes-purchase-receipt-phishing-scam-3.jpg\" data-rel=\"penci-gallery-image-content\" ><img loading=\"lazy\" decoding=\"async\" data-attachment-id=\"22663\" data-permalink=\"https:\/\/www.hoax-slayer.net\/itunes-purchase-receipt-phishing-scam\/itunes-purchase-receipt-phishing-scam-3\/\" data-orig-file=\"https:\/\/www.hoax-slayer.net\/wp-content\/uploads\/2014\/04\/itunes-purchase-receipt-phishing-scam-3.jpg\" data-orig-size=\"590,273\" data-comments-opened=\"1\" data-image-meta=\"{&quot;aperture&quot;:&quot;0&quot;,&quot;credit&quot;:&quot;&quot;,&quot;camera&quot;:&quot;&quot;,&quot;caption&quot;:&quot;&quot;,&quot;created_timestamp&quot;:&quot;0&quot;,&quot;copyright&quot;:&quot;&quot;,&quot;focal_length&quot;:&quot;0&quot;,&quot;iso&quot;:&quot;0&quot;,&quot;shutter_speed&quot;:&quot;0&quot;,&quot;title&quot;:&quot;&quot;,&quot;orientation&quot;:&quot;0&quot;}\" data-image-title=\"itunes-purchase-receipt-phishing-scam-3\" data-image-description=\"\" data-medium-file=\"https:\/\/www.hoax-slayer.net\/wp-content\/uploads\/2014\/04\/itunes-purchase-receipt-phishing-scam-3-300x139.jpg\" data-large-file=\"https:\/\/www.hoax-slayer.net\/wp-content\/uploads\/2014\/04\/itunes-purchase-receipt-phishing-scam-3.jpg\" class=\"aligncenter size-full wp-image-22663\" src=\"https:\/\/www.hoax-slayer.net\/wp-content\/uploads\/2014\/04\/itunes-purchase-receipt-phishing-scam-3.jpg\" alt=\"iTune Receipt Phishing Scam 5\" width=\"590\" height=\"273\" srcset=\"https:\/\/www.hoax-slayer.net\/wp-content\/uploads\/2014\/04\/itunes-purchase-receipt-phishing-scam-3.jpg 590w, https:\/\/www.hoax-slayer.net\/wp-content\/uploads\/2014\/04\/itunes-purchase-receipt-phishing-scam-3-300x139.jpg 300w, https:\/\/www.hoax-slayer.net\/wp-content\/uploads\/2014\/04\/itunes-purchase-receipt-phishing-scam-3-500x231.jpg 500w, https:\/\/www.hoax-slayer.net\/wp-content\/uploads\/2014\/04\/itunes-purchase-receipt-phishing-scam-3-585x271.jpg 585w\" sizes=\"(max-width: 590px) 100vw, 590px\" \/><\/a><\/p>\n<p>The fake page also claims that the verification still needs to be &#8216;confirmed&#8217;, a process that could take up to 48 hours. Supposedly, a notification email will be sent to the users as soon as the account has been confirmed. Satisfied that the problem has been successfully rectified, victims may happily go about their business none the wiser.<\/p>\n<p>But, alas, no &#8216;confirmation&#8217; email will ever arrive. And, meanwhile, the criminals can use the stolen data to commit credit card fraud and identity theft. Ironically given the supposed reason for supplying the data in the first place, the criminals can also use the stolen login details to hijack the Apple accounts belonging to their victims and use them for their own nefarious purposes.<\/p>\n<p>Be very wary of any email that claims that you must click a link or open an attached file to rectify an account issue, cancel a suspect payment, or update account details. These are very common phishing ploys. It is always safest to login to your online accounts by entering the account address into your browser&#8217;s address bar or via an app supplied by the company or a trusted third party developer.<\/p>\n<p>The Apple support website \u00a0<a class=\"norm\" title=\"Phishing &amp; Other Suspicious Emails\" href=\"https:\/\/www.apple.com\/legal\/more-resources\/phishing\/\">includes information about phishing scams<\/a> \u00a0and instructions for reporting suspect emails.<\/p>\n<p><script async src=\"\/\/pagead2.googlesyndication.com\/pagead\/js\/adsbygoogle.js\"><\/script><br \/>\n<!-- Third Content Ad Responsive --><br \/>\n<ins class=\"adsbygoogle\"\n     style=\"display:block\"\n     data-ad-client=\"ca-pub-0355887770822260\"\n     data-ad-slot=\"1909104632\"\n     data-ad-format=\"auto\"><\/ins><br \/>\n<script>\n(adsbygoogle = window.adsbygoogle || []).push({});\n<\/script><\/p>\n<div align=\"center\"><script async src=\"\/\/pagead2.googlesyndication.com\/pagead\/js\/adsbygoogle.js\"><\/script><br \/>\n<!-- HS Net Bottom AdLinks --><br \/>\n<ins class=\"adsbygoogle\" style=\"display: block;\" data-ad-client=\"ca-pub-0355887770822260\" data-ad-slot=\"1358951439\" data-ad-format=\"link\"><\/ins><br \/>\n<script>\n(adsbygoogle = window.adsbygoogle || []).push({});\n<\/script><\/div>\n<p><\/br><\/br> Original Source : <a href=\"https:\/\/www.hoax-slayer.net\/itunes-purchase-receipt-phishing-scam\/\" target=\"_blank\">https:\/\/www.hoax-slayer.net\/itunes-purchase-receipt-phishing-scam\/<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Outline Email purporting to be from the iTunes store lists orders supposedly made via the user&#8217;s Apple account. The email informs users that, if they suspect that their account has been hijacked, they should click a link and supply information to rectify the issue. \u00a0 Brief Analysis The email is not from iTunes and the [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":6890,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[1],"tags":[],"class_list":["post-2091","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-hoax-inggris"],"_links":{"self":[{"href":"https:\/\/www.syyhoaxanalyzer.com\/index.php?rest_route=\/wp\/v2\/posts\/2091"}],"collection":[{"href":"https:\/\/www.syyhoaxanalyzer.com\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.syyhoaxanalyzer.com\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.syyhoaxanalyzer.com\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.syyhoaxanalyzer.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=2091"}],"version-history":[{"count":0,"href":"https:\/\/www.syyhoaxanalyzer.com\/index.php?rest_route=\/wp\/v2\/posts\/2091\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.syyhoaxanalyzer.com\/index.php?rest_route=\/wp\/v2\/media\/6890"}],"wp:attachment":[{"href":"https:\/\/www.syyhoaxanalyzer.com\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=2091"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.syyhoaxanalyzer.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=2091"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.syyhoaxanalyzer.com\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=2091"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}