Unfortunately, attempts to steal sensitive user information, also known as phishing, have grown more and more and are getting even more elaborate. With emails very similar to the real ones, phishers try to impersonate Apple and send emails to trick people into collecting / stealing important data.
To help users distinguish between legitimate and fake emails, Apple has updated its support page on how to identify official iTunes emails, also citing emails from its other services, such as iCloud, App Store, iBooks Store or Apple Music.
Although the image above looks like an official email from Ma, it illustrates how a fake email can look a lot like an original. However, Apple warns that legitimate purchase emails always contain the current billing address, something customers phishers have no access.
In addition, it should be noted that legitimate emails will never ask for CPF information, your mother's maiden name, full credit card number or especially your security code.
If you receive an email requesting that your account or payment details be updated, do not click on any link within the email; access your data directly in the Settings app (on your iOS devices) or in iTunes (on your Mac or PC).
If you receive a suspicious email, forward it immediately to reportphishing@apple and, if you ever fall for the scam and send your information to an illegitimate website, update your Apple ID password as soon as possible.
This type of attack in the new and certainly continue to appear for that reason, little care. In addition to all these tips, always remember to also check the email address that sent you the message, as it is easy to distinguish it from the real addresses. And these tips are valid not only for emails coming from Apple, as for any bank service, stores and more. Just stay tuned!