←back to thread

Ask HN: Is this email from Apple legit?

23 points pqvst | 1 comments | 28 Jul 22 05:18 UTC | HN request time: 0.361s | source

I received this very weird email from Apple saying that my banking information is invalid.

I do in fact have an App Store developer account, but this email talks about "iTunes Connect", which I thought doesn't exist any more...

Furthermore, the email is from "The Apple Music Team". Why on earth would they be emailing me about my banking information?

Everything about this email is just weird. My scam/phishing alarm bells went off immediately, but from what I can tell, it looks legit.

---

From: do_not_reply@email.apple.com Subject: Correct your banking details to receive payments.

Dear X,

We’re reaching out because your banking information in iTunes Connect is invalid and needs to be corrected to ensure the successful payment of any amounts owed to you.

Users with the Admin, Legal, or Finance role can update these details in the Agreements, Tax, and Banking section in iTunes Connect. For help with making updates, visit iTunes Connect Resources and Help.

Once your banking information is corrected, it may take up to two payment cycles to send your payment. If you have any questions, contact us.

Best regards,

The Apple Music Team

Show context
necovek ◴[28 Jul 22 06:09 UTC] No.32260966[source]
When you are suspicious of any incoming emails, look for "received from" lines in SMTP envelope (not in the header fields which are trivially forgeable): as soon as email hits a normal server, it can't be forged anymore, and a relaying/delivering server will insert the actual header.

If there is no apple.com mail server in the sequence of received-from lines, it's not a valid email.

If there is, it should be valid or their MX servers are compromised.

Regardless, always browse yourself to wherever you need to update any banking info or personal data.

replies(1): >>32261194 #
1. pqvst ◴[28 Jul 22 06:47 UTC] No.32261194[source]
Indeed. The first thing I did was close the email and log into my account, but couldn't find any warnings there. I've sent a support message to Apple as well asking what's up with this email.