Most active commenters
  • pqvst(5)
  • davidkuennen(3)
  • ghnapp(3)

Ask HN: Is this email from Apple legit?

23 points pqvst | 36 comments | 28 Jul 22 05:18 UTC | HN request time: 0.865s | source | bottom

I received this very weird email from Apple saying that my banking information is invalid.

I do in fact have an App Store developer account, but this email talks about "iTunes Connect", which I thought doesn't exist any more...

Furthermore, the email is from "The Apple Music Team". Why on earth would they be emailing me about my banking information?

Everything about this email is just weird. My scam/phishing alarm bells went off immediately, but from what I can tell, it looks legit.

---

From: do_not_reply@email.apple.com Subject: Correct your banking details to receive payments.

Dear X,

We’re reaching out because your banking information in iTunes Connect is invalid and needs to be corrected to ensure the successful payment of any amounts owed to you.

Users with the Admin, Legal, or Finance role can update these details in the Agreements, Tax, and Banking section in iTunes Connect. For help with making updates, visit iTunes Connect Resources and Help.

Once your banking information is corrected, it may take up to two payment cycles to send your payment. If you have any questions, contact us.

Best regards,

The Apple Music Team

1. baruch_forest ◴[28 Jul 22 05:34 UTC] No.32260803[source]
I got the same email like 40 minutes ago.

My friend and I have two separate developer account, with different bank account from the same bank and the same branch. I got the email but He didn't.

And I've been getting paid for the last 6 months with this very bank account without any problem.

It's weird for me too.

replies(1): >>32261204 #
2. davidkuennen ◴[28 Jul 22 05:39 UTC] No.32260829[source]
I got it as well on two separate accounts. One of which I changed the banking information this month and Apple owes me money and one which doesn't have any banking information at all. Very weird.

Since today is payday on the first account I will let you know if the payment gets through regardless.

replies(2): >>32262600 #>>32274730 #
3. digitsdashes ◴[28 Jul 22 05:40 UTC] No.32260831[source]
I got the same email just now and wondered the same thing. This post was the only result when I googled the first sentence. I also did have an Apple developer account, although I haven't used it for a few years. They certainly don't owe me any money. The email does have my real name in it, which is different from the "Dear customer" in normal phishing emails. There was a story on The Register yesterday about Apple's network being hijacked and routed through Russia so I'm wondering if these two things are connected.
4. cloakedcode ◴[28 Jul 22 05:49 UTC] No.32260869[source]
Turns out Apple has a help doc on identifying legitimate Apple emails:

https://support.apple.com/en-us/HT201679

In any case, avoid any links in the email. If you think it’s legitimate, update your payment information by following what’s listed in the above doc or by getting there through means outside of what’s provided in the email.

5. ameliaray ◴[28 Jul 22 05:52 UTC] No.32260878[source]
I received the same e-mail. My music is distributed to Apple through CD Baby so I have never received direct payment from Apple. I thought there might have been an error on the CD Baby side but wondered why the e-mail was sent to my address and name. As with digitsdashes, this post was the only result when I Googled. I will ignore the e-mail for now. Thanks for posting and commenting.
6. test500 ◴[28 Jul 22 05:55 UTC] No.32260894[source]
I've got this email from Apple and it looks legitimate. The problem is there are no warnings on in app store connect - agreements,tax and banking and I received payment last month..
replies(2): >>32261206 #>>32261212 #
7. acesup93 ◴[28 Jul 22 06:04 UTC] No.32260942[source]
I did receive it as well.

The previous payments went through with no problem and I haven't made any changes since then.

Strange that the contact us redirects to a itunes account. When trying to login it says I don't have an account there.

8. necovek ◴[28 Jul 22 06:09 UTC] No.32260966[source]
When you are suspicious of any incoming emails, look for "received from" lines in SMTP envelope (not in the header fields which are trivially forgeable): as soon as email hits a normal server, it can't be forged anymore, and a relaying/delivering server will insert the actual header.

If there is no apple.com mail server in the sequence of received-from lines, it's not a valid email.

If there is, it should be valid or their MX servers are compromised.

Regardless, always browse yourself to wherever you need to update any banking info or personal data.

replies(1): >>32261194 #
9. misterchuck ◴[28 Jul 22 06:16 UTC] No.32260998[source]
Received that for 2 separated appstore accounts today. Must be sent in error.
10. gwillen ◴[28 Jul 22 06:25 UTC] No.32261058[source]
I think they must have sent a whole fuckton of these in error. I got it as well, it seems to be "legitimate" (in that I believe it is from Apple), but my account is not set up with iTunes Connect (and would have no reason to be, and trying to access it confirms this.)
replies(1): >>32261074 #
11. gwillen ◴[28 Jul 22 06:27 UTC] No.32261074[source]
I also got this email yesterday from iTunes Connect, despite the fact that I do not have an account on that service and I don't sell books:

https://9to5mac.com/2022/07/26/apple-book-sellers-tax-britis...

replies(1): >>32261747 #
12. pqvst ◴[28 Jul 22 06:47 UTC] No.32261194[source]
Indeed. The first thing I did was close the email and log into my account, but couldn't find any warnings there. I've sent a support message to Apple as well asking what's up with this email.
13. Mlara75 ◴[28 Jul 22 06:48 UTC] No.32261204[source]
What do you mean; its been paying you for the last 6 months? What are the payments for?
replies(1): >>32261335 #
14. pqvst ◴[28 Jul 22 06:49 UTC] No.32261206[source]
Same, couldn't find any warnings. Glad to hear I'm not the only one at least!
15. Mlara75 ◴[28 Jul 22 06:50 UTC] No.32261212[source]
iTunes connect sent you a payment? What is it for?
replies(1): >>32261308 #
16. pqvst ◴[28 Jul 22 07:08 UTC] No.32261308{3}[source]
Well. I receive monthly payments from Apple for App Store revenue. I guess this used to be from "iTunes Connect" but is now called "App Store Connect", hence the confusion on my part.
17. baruch_forest ◴[28 Jul 22 07:11 UTC] No.32261335{3}[source]
I have an apple developer account. I develop app and sell subscriptions. I have submitted a bank account and got paid with no problem in the past 6 months. That’s my only bank account that apple is aware of. So I thought that sth may be wrong with it based on the email.
18. vaibhavthevedi ◴[28 Jul 22 07:30 UTC] No.32261441[source]
Can vouch for receiving the same emails in the last couple of days.
replies(1): >>32261547 #
19. hrrsn ◴[28 Jul 22 07:52 UTC] No.32261547[source]
I've received it on two addresses today, as well as an update about tax in British Columbia yesterday. I've never sold anything on Apple's stores, and haven't had an email from iTunes Connect before this.
20. ghnapp ◴[28 Jul 22 07:56 UTC] No.32261576[source]
Same here. Also have an Apple dev account. Make my living from app sales. Nearly got a heart attack. This is my only source of income.

Phishing bells went off immediately too, so I did not click. Looked at source code of email… urls go to itunespartner.apple.com and itunesconnect.apple.com so at least that part seems legit.

I’m away from my computer for a few days so can’t check smtp envelope. Anyone done this?

To me indeed looks like (and sincerely hope) a screw up on Apple side.

But since today is pay day I’ll be doing ‘pull-to-refresh’ in my banking app for the rest of the day :/

replies(1): >>32261654 #
21. ghnapp ◴[28 Jul 22 08:14 UTC] No.32261654[source]
Just checked https://developer.apple.com/system-status/

There was an issue with App Store Connect during the last 3 hours approximately. Unfortunately doesn’t mention any detail on the kind of issue, but timing is pretty similar to posts here.

replies(2): >>32261903 #>>32262275 #
22. acesup93 ◴[28 Jul 22 08:34 UTC] No.32261747{3}[source]
me too.
23. boppo1 ◴[28 Jul 22 08:55 UTC] No.32261903{3}[source]
Maybe it's an old automated thing that someone forgot to deprecate? A little ghost in the machine
24. kasabulatov ◴[28 Jul 22 09:07 UTC] No.32261983[source]
I am living from app sales too. Got heart attack. Received that email and after two hours successfully received payment.
replies(2): >>32262051 #>>32263554 #
25. rxkxa ◴[28 Jul 22 09:10 UTC] No.32262000[source]
Same here. Are you using a SEPA bank account? This might be the issue…. Idk I just emailed Apple for clarification.
26. rxkxa ◴[28 Jul 22 09:14 UTC] No.32262051[source]
I have received the email and no payment:( you have and EUR or USD account? SEPA bank account?
27. ghnapp ◴[28 Jul 22 09:41 UTC] No.32262275{3}[source]
I just received payment. Belgian EUR IBAN bank account.
28. davidkuennen ◴[28 Jul 22 10:29 UTC] No.32262600[source]
Update: Payment got through
replies(1): >>32263556 #
29. mtrf ◴[28 Jul 22 12:47 UTC] No.32263554[source]
Oh man! Got heart attack too. Thank you for the update.
30. mtrf ◴[28 Jul 22 12:47 UTC] No.32263556{3}[source]
Oh man! Got heart attack. Thank you for the update.
31. andreineculau ◴[28 Jul 22 13:04 UTC] No.32263729[source]
Erroneous send out by Apple according to https://www.macrumors.com/2022/07/28/apple-erroneously-sendi...
32. kerembaydogan ◴[28 Jul 22 20:56 UTC] No.32270007[source]
Hello, some developers may have received an email yesterday noting that their banking information in iTunes Connect is invalid and needs to be corrected. This email was sent in error and we apologize. No action needs to be taken at this time.

source: https://developer.apple.com/forums/thread/711039

33. cbanek ◴[28 Jul 22 23:58 UTC] No.32271529[source]
Just got one of these too. I wish they were going to pay me money.
34. davidkuennen ◴[29 Jul 22 09:21 UTC] No.32274730[source]
Got this support response today from Apple:

------------

Hello X,

My name is X from Apple Developer Program Support.

You were sent an email today noting that your banking information in iTunes Connect is invalid and needs to be corrected. This email was sent in error and you do not need to update banking information. We apologize for the error.

If you have additional questions related to this request, please refer to case number X.

Best regards,

X

Apple Inc.

------------

So it really was an error

35. pqvst ◴[29 Jul 22 09:54 UTC] No.32274973[source]
Update: I received a response from Apple now:

"You were sent an email today noting that your banking information in iTunes Connect is invalid and needs to be corrected. This email was sent in error and you do not need to update banking information. We apologize for the error."