How could a scammer know the apps on my phone / iTunes account?How much information, at maximum, can a phisher/scammer obtain?Is the following e-mail fraud technically possible?Isn't the BBC being extremely irresponsible in describing how to authenticate an account-related email?Facebook messages with a suspicious link, what information can they get if I dont enter any details?Was coerced into setting up 2 Google Phone Accounts and don't know how to delete themIs it dangerous for a scammer to know just your name and birthday?Almost fell for “tech support” scam - what is the risk?Am I at risk for giving my email, name and phone number to a scammer?Why would a scammer ask for creation of a new email account?Finding out if a series of job emails from the same person are a scam or a way of tracking/phishing?

Is there a hypothetical scenario that would make Earth uninhabitable for humans, but not for (the majority of) other animals?

Why is there so much iron?

How to terminate ping <dest> &

What are substitutions for coconut in curry?

Is it correct to say "which country do you like the most?"

If "dar" means "to give", what does "daros" mean?

Using Leaflet inside Bootstrap container?

Is there a term for accumulated dirt on the outside of your hands and feet?

Why does the degree of dissociation change when we dilute a weak acid even though the equilibrium constant K is constant?

Is honey really a supersaturated solution? Does heating to un-crystalize redissolve it or melt it?

Is it true that good novels will automatically sell themselves on Amazon (and so on) and there is no need for one to waste time promoting?

Do the common programs (for example: "ls", "cat") in Linux and BSD come from the same source code?

Why Choose Less Effective Armour Types?

Are ETF trackers fundamentally better than individual stocks?

Official degrees of earth’s rotation per day

The iconography of Shrinathji

What is the plural TO OF sth

TikZ-decoration: control decoration amplitude along curve

How to generate binary array whose elements with values 1 are randomly drawn

Describing a chess game in a novel

HP P840 HDD RAID 5 many strange drive failures

In what cases must I use 了 and in what cases not?

What does "^L" mean in c?

How to define limit operations in general topological spaces? Are nets able to do this?



How could a scammer know the apps on my phone / iTunes account?


How much information, at maximum, can a phisher/scammer obtain?Is the following e-mail fraud technically possible?Isn't the BBC being extremely irresponsible in describing how to authenticate an account-related email?Facebook messages with a suspicious link, what information can they get if I dont enter any details?Was coerced into setting up 2 Google Phone Accounts and don't know how to delete themIs it dangerous for a scammer to know just your name and birthday?Almost fell for “tech support” scam - what is the risk?Am I at risk for giving my email, name and phone number to a scammer?Why would a scammer ask for creation of a new email account?Finding out if a series of job emails from the same person are a scam or a way of tracking/phishing?













24















I received an email with the subject "Your invoice from Apple #xxxxx".
It then continues by: "[...] your payment from "Pokemon Go was accepted [...]". That line made me sceptical. I just downloaded the app recently. How could the scammer know this? Was it just a good guess?



I assume it to be scam since:



  • The sender is surpressed

  • Typos

  • No Username / data

  • Generic text

  • A suspicious little pdf

  • Not the signature / style from your friendly, expensive fruit seller tech company

Some online warning sites already caught up on it



What I could think of:



  • Another free app reports my other apps to the vendor

  • A site I often visit has cookies that I was looking up stuff from let's go pikachu

  • My account could actually be compromized and someone has access to my records

  • Many people have the app installed


    If only a fraction of the people who have the app open the attached pdf the scammer wins.

Anyway, how could this be and what counter messurements can I apply?










share|improve this question









New contributor




Peter is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
Check out our Code of Conduct.




















  • "Many people have the app installed and some people that actually have it open the pdf without hestitation" what do you mean by this? Is there a .pdf attached to the email? Im quite confused where "the pdf" is coming from

    – Flying Thunder
    Mar 14 at 13:55











  • Why is this obviously a scam? It's been a while since I bought something from the app store but isn't this typically what happens after a purchase? You get an email confirmation. What exactly about this makes you think it's a scam?

    – JimmyJames
    Mar 14 at 14:07






  • 39





    If you have pokemon go, it catches your interest because it seems more legitimate. If you don't have that app, it catches your interested because, who just bought that on my account?! Either way they have had an effect on you.

    – JPhi1618
    Mar 14 at 14:24






  • 3





    Considering I'm getting the same emails, it's safe to say they don't actually know anything.

    – oarfish
    2 days ago











  • @FlyingThunder its a common scam email and there is always a pdf attached - it tries to get people to open it to see what they are supposed to have brought. I get them and I don't even have an iphone - its obviously a scam as apple don't attach pdfs to bills and it always claims to be about a popular app to increase the chance you might have the app installed

    – Matt
    2 hours ago
















24















I received an email with the subject "Your invoice from Apple #xxxxx".
It then continues by: "[...] your payment from "Pokemon Go was accepted [...]". That line made me sceptical. I just downloaded the app recently. How could the scammer know this? Was it just a good guess?



I assume it to be scam since:



  • The sender is surpressed

  • Typos

  • No Username / data

  • Generic text

  • A suspicious little pdf

  • Not the signature / style from your friendly, expensive fruit seller tech company

Some online warning sites already caught up on it



What I could think of:



  • Another free app reports my other apps to the vendor

  • A site I often visit has cookies that I was looking up stuff from let's go pikachu

  • My account could actually be compromized and someone has access to my records

  • Many people have the app installed


    If only a fraction of the people who have the app open the attached pdf the scammer wins.

Anyway, how could this be and what counter messurements can I apply?










share|improve this question









New contributor




Peter is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
Check out our Code of Conduct.




















  • "Many people have the app installed and some people that actually have it open the pdf without hestitation" what do you mean by this? Is there a .pdf attached to the email? Im quite confused where "the pdf" is coming from

    – Flying Thunder
    Mar 14 at 13:55











  • Why is this obviously a scam? It's been a while since I bought something from the app store but isn't this typically what happens after a purchase? You get an email confirmation. What exactly about this makes you think it's a scam?

    – JimmyJames
    Mar 14 at 14:07






  • 39





    If you have pokemon go, it catches your interest because it seems more legitimate. If you don't have that app, it catches your interested because, who just bought that on my account?! Either way they have had an effect on you.

    – JPhi1618
    Mar 14 at 14:24






  • 3





    Considering I'm getting the same emails, it's safe to say they don't actually know anything.

    – oarfish
    2 days ago











  • @FlyingThunder its a common scam email and there is always a pdf attached - it tries to get people to open it to see what they are supposed to have brought. I get them and I don't even have an iphone - its obviously a scam as apple don't attach pdfs to bills and it always claims to be about a popular app to increase the chance you might have the app installed

    – Matt
    2 hours ago














24












24








24


1






I received an email with the subject "Your invoice from Apple #xxxxx".
It then continues by: "[...] your payment from "Pokemon Go was accepted [...]". That line made me sceptical. I just downloaded the app recently. How could the scammer know this? Was it just a good guess?



I assume it to be scam since:



  • The sender is surpressed

  • Typos

  • No Username / data

  • Generic text

  • A suspicious little pdf

  • Not the signature / style from your friendly, expensive fruit seller tech company

Some online warning sites already caught up on it



What I could think of:



  • Another free app reports my other apps to the vendor

  • A site I often visit has cookies that I was looking up stuff from let's go pikachu

  • My account could actually be compromized and someone has access to my records

  • Many people have the app installed


    If only a fraction of the people who have the app open the attached pdf the scammer wins.

Anyway, how could this be and what counter messurements can I apply?










share|improve this question









New contributor




Peter is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
Check out our Code of Conduct.












I received an email with the subject "Your invoice from Apple #xxxxx".
It then continues by: "[...] your payment from "Pokemon Go was accepted [...]". That line made me sceptical. I just downloaded the app recently. How could the scammer know this? Was it just a good guess?



I assume it to be scam since:



  • The sender is surpressed

  • Typos

  • No Username / data

  • Generic text

  • A suspicious little pdf

  • Not the signature / style from your friendly, expensive fruit seller tech company

Some online warning sites already caught up on it



What I could think of:



  • Another free app reports my other apps to the vendor

  • A site I often visit has cookies that I was looking up stuff from let's go pikachu

  • My account could actually be compromized and someone has access to my records

  • Many people have the app installed


    If only a fraction of the people who have the app open the attached pdf the scammer wins.

Anyway, how could this be and what counter messurements can I apply?







email phishing scam






share|improve this question









New contributor




Peter is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
Check out our Code of Conduct.











share|improve this question









New contributor




Peter is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
Check out our Code of Conduct.









share|improve this question




share|improve this question








edited Mar 14 at 15:54







Peter













New contributor




Peter is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
Check out our Code of Conduct.









asked Mar 14 at 12:54









PeterPeter

22327




22327




New contributor




Peter is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
Check out our Code of Conduct.





New contributor





Peter is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
Check out our Code of Conduct.






Peter is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
Check out our Code of Conduct.












  • "Many people have the app installed and some people that actually have it open the pdf without hestitation" what do you mean by this? Is there a .pdf attached to the email? Im quite confused where "the pdf" is coming from

    – Flying Thunder
    Mar 14 at 13:55











  • Why is this obviously a scam? It's been a while since I bought something from the app store but isn't this typically what happens after a purchase? You get an email confirmation. What exactly about this makes you think it's a scam?

    – JimmyJames
    Mar 14 at 14:07






  • 39





    If you have pokemon go, it catches your interest because it seems more legitimate. If you don't have that app, it catches your interested because, who just bought that on my account?! Either way they have had an effect on you.

    – JPhi1618
    Mar 14 at 14:24






  • 3





    Considering I'm getting the same emails, it's safe to say they don't actually know anything.

    – oarfish
    2 days ago











  • @FlyingThunder its a common scam email and there is always a pdf attached - it tries to get people to open it to see what they are supposed to have brought. I get them and I don't even have an iphone - its obviously a scam as apple don't attach pdfs to bills and it always claims to be about a popular app to increase the chance you might have the app installed

    – Matt
    2 hours ago


















  • "Many people have the app installed and some people that actually have it open the pdf without hestitation" what do you mean by this? Is there a .pdf attached to the email? Im quite confused where "the pdf" is coming from

    – Flying Thunder
    Mar 14 at 13:55











  • Why is this obviously a scam? It's been a while since I bought something from the app store but isn't this typically what happens after a purchase? You get an email confirmation. What exactly about this makes you think it's a scam?

    – JimmyJames
    Mar 14 at 14:07






  • 39





    If you have pokemon go, it catches your interest because it seems more legitimate. If you don't have that app, it catches your interested because, who just bought that on my account?! Either way they have had an effect on you.

    – JPhi1618
    Mar 14 at 14:24






  • 3





    Considering I'm getting the same emails, it's safe to say they don't actually know anything.

    – oarfish
    2 days ago











  • @FlyingThunder its a common scam email and there is always a pdf attached - it tries to get people to open it to see what they are supposed to have brought. I get them and I don't even have an iphone - its obviously a scam as apple don't attach pdfs to bills and it always claims to be about a popular app to increase the chance you might have the app installed

    – Matt
    2 hours ago

















"Many people have the app installed and some people that actually have it open the pdf without hestitation" what do you mean by this? Is there a .pdf attached to the email? Im quite confused where "the pdf" is coming from

– Flying Thunder
Mar 14 at 13:55





"Many people have the app installed and some people that actually have it open the pdf without hestitation" what do you mean by this? Is there a .pdf attached to the email? Im quite confused where "the pdf" is coming from

– Flying Thunder
Mar 14 at 13:55













Why is this obviously a scam? It's been a while since I bought something from the app store but isn't this typically what happens after a purchase? You get an email confirmation. What exactly about this makes you think it's a scam?

– JimmyJames
Mar 14 at 14:07





Why is this obviously a scam? It's been a while since I bought something from the app store but isn't this typically what happens after a purchase? You get an email confirmation. What exactly about this makes you think it's a scam?

– JimmyJames
Mar 14 at 14:07




39




39





If you have pokemon go, it catches your interest because it seems more legitimate. If you don't have that app, it catches your interested because, who just bought that on my account?! Either way they have had an effect on you.

– JPhi1618
Mar 14 at 14:24





If you have pokemon go, it catches your interest because it seems more legitimate. If you don't have that app, it catches your interested because, who just bought that on my account?! Either way they have had an effect on you.

– JPhi1618
Mar 14 at 14:24




3




3





Considering I'm getting the same emails, it's safe to say they don't actually know anything.

– oarfish
2 days ago





Considering I'm getting the same emails, it's safe to say they don't actually know anything.

– oarfish
2 days ago













@FlyingThunder its a common scam email and there is always a pdf attached - it tries to get people to open it to see what they are supposed to have brought. I get them and I don't even have an iphone - its obviously a scam as apple don't attach pdfs to bills and it always claims to be about a popular app to increase the chance you might have the app installed

– Matt
2 hours ago






@FlyingThunder its a common scam email and there is always a pdf attached - it tries to get people to open it to see what they are supposed to have brought. I get them and I don't even have an iphone - its obviously a scam as apple don't attach pdfs to bills and it always claims to be about a popular app to increase the chance you might have the app installed

– Matt
2 hours ago











5 Answers
5






active

oldest

votes


















75














It's a game of probability and chances are high that you might have one of the most popular apps in history installed on your device.



My guess is that the scammer does not know anything about you. The app in question is widely popular and one of the most successful apps on both iOS and Android. An attacker may just send out large amounts of mails containing such "most probable apps"/"best guesses". It would have been the same if the scammer sent an invoice for WhatsApp, which you most probably have installed on your device.



This tactic can also be observed in other recent spam waves like the notorious sextorion scam where the attacker sends a rather ominous remark about your porn preferences:




i installed a software on the adult videos (pornographic material) web-site [...] 1st part displays the video you were viewing (you’ve got a nice taste haha)




So to sum it up, this is most likely just a wild, but very probable guess, and you are not compromised. Countermeasures in this case: delete the email, go catch some Pokémon and have fun.






share|improve this answer


















  • 13





    I received that mail too, but don't have a Apple/iTunes Account/Device, nor bought something in PokemonGo (but had it installed on my Android Devices) so that mail was instantly deleted as scam for me because i don't apply to my in any way. I also received a mail in the past regarding a invoice of WhatsApp (befor it was entirely free) that a monthly subscription has been paid

    – Serverfrog
    Mar 14 at 16:01












  • It's random.... I've not had that email, but several about my iTunes account being blocked (I don't have one) and too many to count about blocked bank accounts with banks I don't bank with (but surprisingly few pretending to be from the bank I do bank with)

    – TripeHound
    2 days ago


















13














Pokemon Go is a very popular app. I would not be surprised if that email was being scatter-gunned to see who might panic and do what the phishing email wants. The other possibilities include:



  • Niantic (the devs of Pokemon Go) has been compromised - not very likely

  • The providers of another app on your phone have detected you use it and have sold that info onto someone else.

  • The attackers know either you have a Pokemon Go or an Apple account - not necessarily both.

  • You yourself provided that information somewhere

  • Another one of your accounts, where you have used your email address and talked about Pokemon Go on iPhone, has been compromised





share|improve this answer






























    10














    Former Apple Inc. employee here. I have seen some shady stuff on people's phones and what you're experiencing isn't new--I have received the same emails. That's how they phish people. They get receivers of the email to contact them, then try to dispute the charge, unknowingly giving over private information to help "resolve" the issue. If your account has been compromised, they can see your app purchases. Purchases include free downloads. Here's what I'd suggest to check:



    1. Firstly, check the email address from the email. If it's non-Apple, dismiss it.

    2. Check the devices associated with your phone. Settings>Your Name(top). There, if you scroll down, you should see a list of your Apple Devices. If you do not recognize one. You may have someone signed in to your account.

    3. Check your "Family Sharing" tab. If you are a part of a family you shouldn't be, you may be compromised. (Settings>Your Name>Family Sharing)

    4. Check to see if there is a "Profile" on your phone. This is popular with business phones to monitor employees, but some people use this maliciously. (Settings>General ... scroll and look for something that may not belong).

    5. This one is tricky, make sure when you're connected to wifi, you're on a known secure network. Users often join networks to save their data, but I personally have known people to travel with a hotspot in populated areas to get people to connect to it. From there, they can find a way to mess with your device or information. Same goes with connecting to those free chargers in public spaces, like at airports -- be very wary.

    Hope this helps someone






    share|improve this answer








    New contributor




    user201921 is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
    Check out our Code of Conduct.















    • 5





      Also keep in mind that email addresses are pretty easy to spoof; in doing step 1, also look at the full message source/headers in your email client and look for the Received: lines. If there are any of those other than your mail provider and apple.com, it's almost certainly a forgery.

      – fluffy
      2 days ago



















    -2














    Answer void in light of updated info in question.



    Sounds like a valid invoice for an in-app purchase. Invoice in this case just means receipt - not that you need make additional payment action. So just Apple notifying you its processing the payment and that the source was from (within) Pokemon Go.



    But info for scammers is readily available. Its all part of the marketing frenzy that has been building since the mid-1990s. Lots of websites and businesses trade marketing data to help sell products. Lots bad security on those databases or legitimate sales with too few questions asked.



    Read those OS and application EULAs. Getting marketing data about your interests to vendors who might sell similar or connected products is an intrinsic part of commercial OS and apps -- and even ISO standards. Cookies are just one avenue for direct query of your phone/computer. Almost 20 years ago I was surprised as a neophyte web administrator that Microsoft websites automatically harvested the default email address of every website user. A legitimate HTTP query from server which even compliant open source software must have the ability to honor (but can default responding to be off).



    To be honest, I would not be surprised if most web browers cough up matching app info to the right webserver queries. Apple/iTunes is a LOT better about privacy from vendors than Android/PlayStore but not immune I bet. iTunes itself may let registered vendors indirectly send messages to app owners based on specified criteria...for a fee. I would expect Apple policy is to review such messages first but everyone has bad or rushed days. I do not know actual details though since I am not a registered vendor.






    share|improve this answer










    New contributor




    NotSoSimple is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
    Check out our Code of Conduct.




















    • So go through all the options about privacy on your ITunes account as well as iOS and each browser and app. App notices is a new buzzword to ways vendors can intrude into privacy.

      – NotSoSimple
      Mar 14 at 15:49











    • Hey, I added lines that build up to my suspicion. This is almost definitly not from apple / iTunes

      – Peter
      Mar 14 at 15:52






    • 1





      Right email client can see actual header. Suppressing visible email header is not as suspicious as you might think. Some big companies do it to keep people from replying to unmonitored email address.

      – NotSoSimple
      Mar 14 at 16:02











    • But Yeah big alert if more than one typo & attaching PDF without comment especially when size says it could have been inline.

      – NotSoSimple
      Mar 14 at 16:05


















    -3














    If there is no actual email header even to special email clients that can show invisible email header info...then you need to suspect that it did not arrive by email. No header is like letter without address, won't get delivered.



    This can happen at the email server if server is running a bad app or otherwise got intrusion. If its Apple mail or other really big and professional provider, I would not expect this. But college email servers and other lower level or private providers might occasionally have issues.



    * Its possible for another "bad" app on your phone to inject stuff into your email queue if you are not using webmail. * I would not expect this if all your apps are through Apple Store/iTunes.



    But if you jail broke your iPhone to add any unapproved apps...
    now is the time to re-evaluate them. Even if they appear to deliver the promised functions (game?/game hack), they may also do something else as well.






    share|improve this answer








    New contributor




    NotSoSimple is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
    Check out our Code of Conduct.



















      Your Answer








      StackExchange.ready(function()
      var channelOptions =
      tags: "".split(" "),
      id: "162"
      ;
      initTagRenderer("".split(" "), "".split(" "), channelOptions);

      StackExchange.using("externalEditor", function()
      // Have to fire editor after snippets, if snippets enabled
      if (StackExchange.settings.snippets.snippetsEnabled)
      StackExchange.using("snippets", function()
      createEditor();
      );

      else
      createEditor();

      );

      function createEditor()
      StackExchange.prepareEditor(
      heartbeatType: 'answer',
      autoActivateHeartbeat: false,
      convertImagesToLinks: false,
      noModals: true,
      showLowRepImageUploadWarning: true,
      reputationToPostImages: null,
      bindNavPrevention: true,
      postfix: "",
      imageUploader:
      brandingHtml: "Powered by u003ca class="icon-imgur-white" href="https://imgur.com/"u003eu003c/au003e",
      contentPolicyHtml: "User contributions licensed under u003ca href="https://creativecommons.org/licenses/by-sa/3.0/"u003ecc by-sa 3.0 with attribution requiredu003c/au003e u003ca href="https://stackoverflow.com/legal/content-policy"u003e(content policy)u003c/au003e",
      allowUrls: true
      ,
      noCode: true, onDemand: true,
      discardSelector: ".discard-answer"
      ,immediatelyShowMarkdownHelp:true
      );



      );






      Peter is a new contributor. Be nice, and check out our Code of Conduct.









      draft saved

      draft discarded


















      StackExchange.ready(
      function ()
      StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2fsecurity.stackexchange.com%2fquestions%2f205340%2fhow-could-a-scammer-know-the-apps-on-my-phone-itunes-account%23new-answer', 'question_page');

      );

      Post as a guest















      Required, but never shown

























      5 Answers
      5






      active

      oldest

      votes








      5 Answers
      5






      active

      oldest

      votes









      active

      oldest

      votes






      active

      oldest

      votes









      75














      It's a game of probability and chances are high that you might have one of the most popular apps in history installed on your device.



      My guess is that the scammer does not know anything about you. The app in question is widely popular and one of the most successful apps on both iOS and Android. An attacker may just send out large amounts of mails containing such "most probable apps"/"best guesses". It would have been the same if the scammer sent an invoice for WhatsApp, which you most probably have installed on your device.



      This tactic can also be observed in other recent spam waves like the notorious sextorion scam where the attacker sends a rather ominous remark about your porn preferences:




      i installed a software on the adult videos (pornographic material) web-site [...] 1st part displays the video you were viewing (you’ve got a nice taste haha)




      So to sum it up, this is most likely just a wild, but very probable guess, and you are not compromised. Countermeasures in this case: delete the email, go catch some Pokémon and have fun.






      share|improve this answer


















      • 13





        I received that mail too, but don't have a Apple/iTunes Account/Device, nor bought something in PokemonGo (but had it installed on my Android Devices) so that mail was instantly deleted as scam for me because i don't apply to my in any way. I also received a mail in the past regarding a invoice of WhatsApp (befor it was entirely free) that a monthly subscription has been paid

        – Serverfrog
        Mar 14 at 16:01












      • It's random.... I've not had that email, but several about my iTunes account being blocked (I don't have one) and too many to count about blocked bank accounts with banks I don't bank with (but surprisingly few pretending to be from the bank I do bank with)

        – TripeHound
        2 days ago















      75














      It's a game of probability and chances are high that you might have one of the most popular apps in history installed on your device.



      My guess is that the scammer does not know anything about you. The app in question is widely popular and one of the most successful apps on both iOS and Android. An attacker may just send out large amounts of mails containing such "most probable apps"/"best guesses". It would have been the same if the scammer sent an invoice for WhatsApp, which you most probably have installed on your device.



      This tactic can also be observed in other recent spam waves like the notorious sextorion scam where the attacker sends a rather ominous remark about your porn preferences:




      i installed a software on the adult videos (pornographic material) web-site [...] 1st part displays the video you were viewing (you’ve got a nice taste haha)




      So to sum it up, this is most likely just a wild, but very probable guess, and you are not compromised. Countermeasures in this case: delete the email, go catch some Pokémon and have fun.






      share|improve this answer


















      • 13





        I received that mail too, but don't have a Apple/iTunes Account/Device, nor bought something in PokemonGo (but had it installed on my Android Devices) so that mail was instantly deleted as scam for me because i don't apply to my in any way. I also received a mail in the past regarding a invoice of WhatsApp (befor it was entirely free) that a monthly subscription has been paid

        – Serverfrog
        Mar 14 at 16:01












      • It's random.... I've not had that email, but several about my iTunes account being blocked (I don't have one) and too many to count about blocked bank accounts with banks I don't bank with (but surprisingly few pretending to be from the bank I do bank with)

        – TripeHound
        2 days ago













      75












      75








      75







      It's a game of probability and chances are high that you might have one of the most popular apps in history installed on your device.



      My guess is that the scammer does not know anything about you. The app in question is widely popular and one of the most successful apps on both iOS and Android. An attacker may just send out large amounts of mails containing such "most probable apps"/"best guesses". It would have been the same if the scammer sent an invoice for WhatsApp, which you most probably have installed on your device.



      This tactic can also be observed in other recent spam waves like the notorious sextorion scam where the attacker sends a rather ominous remark about your porn preferences:




      i installed a software on the adult videos (pornographic material) web-site [...] 1st part displays the video you were viewing (you’ve got a nice taste haha)




      So to sum it up, this is most likely just a wild, but very probable guess, and you are not compromised. Countermeasures in this case: delete the email, go catch some Pokémon and have fun.






      share|improve this answer













      It's a game of probability and chances are high that you might have one of the most popular apps in history installed on your device.



      My guess is that the scammer does not know anything about you. The app in question is widely popular and one of the most successful apps on both iOS and Android. An attacker may just send out large amounts of mails containing such "most probable apps"/"best guesses". It would have been the same if the scammer sent an invoice for WhatsApp, which you most probably have installed on your device.



      This tactic can also be observed in other recent spam waves like the notorious sextorion scam where the attacker sends a rather ominous remark about your porn preferences:




      i installed a software on the adult videos (pornographic material) web-site [...] 1st part displays the video you were viewing (you’ve got a nice taste haha)




      So to sum it up, this is most likely just a wild, but very probable guess, and you are not compromised. Countermeasures in this case: delete the email, go catch some Pokémon and have fun.







      share|improve this answer












      share|improve this answer



      share|improve this answer










      answered Mar 14 at 13:25









      SeeYouInDisneylandSeeYouInDisneyland

      1,148519




      1,148519







      • 13





        I received that mail too, but don't have a Apple/iTunes Account/Device, nor bought something in PokemonGo (but had it installed on my Android Devices) so that mail was instantly deleted as scam for me because i don't apply to my in any way. I also received a mail in the past regarding a invoice of WhatsApp (befor it was entirely free) that a monthly subscription has been paid

        – Serverfrog
        Mar 14 at 16:01












      • It's random.... I've not had that email, but several about my iTunes account being blocked (I don't have one) and too many to count about blocked bank accounts with banks I don't bank with (but surprisingly few pretending to be from the bank I do bank with)

        – TripeHound
        2 days ago












      • 13





        I received that mail too, but don't have a Apple/iTunes Account/Device, nor bought something in PokemonGo (but had it installed on my Android Devices) so that mail was instantly deleted as scam for me because i don't apply to my in any way. I also received a mail in the past regarding a invoice of WhatsApp (befor it was entirely free) that a monthly subscription has been paid

        – Serverfrog
        Mar 14 at 16:01












      • It's random.... I've not had that email, but several about my iTunes account being blocked (I don't have one) and too many to count about blocked bank accounts with banks I don't bank with (but surprisingly few pretending to be from the bank I do bank with)

        – TripeHound
        2 days ago







      13




      13





      I received that mail too, but don't have a Apple/iTunes Account/Device, nor bought something in PokemonGo (but had it installed on my Android Devices) so that mail was instantly deleted as scam for me because i don't apply to my in any way. I also received a mail in the past regarding a invoice of WhatsApp (befor it was entirely free) that a monthly subscription has been paid

      – Serverfrog
      Mar 14 at 16:01






      I received that mail too, but don't have a Apple/iTunes Account/Device, nor bought something in PokemonGo (but had it installed on my Android Devices) so that mail was instantly deleted as scam for me because i don't apply to my in any way. I also received a mail in the past regarding a invoice of WhatsApp (befor it was entirely free) that a monthly subscription has been paid

      – Serverfrog
      Mar 14 at 16:01














      It's random.... I've not had that email, but several about my iTunes account being blocked (I don't have one) and too many to count about blocked bank accounts with banks I don't bank with (but surprisingly few pretending to be from the bank I do bank with)

      – TripeHound
      2 days ago





      It's random.... I've not had that email, but several about my iTunes account being blocked (I don't have one) and too many to count about blocked bank accounts with banks I don't bank with (but surprisingly few pretending to be from the bank I do bank with)

      – TripeHound
      2 days ago













      13














      Pokemon Go is a very popular app. I would not be surprised if that email was being scatter-gunned to see who might panic and do what the phishing email wants. The other possibilities include:



      • Niantic (the devs of Pokemon Go) has been compromised - not very likely

      • The providers of another app on your phone have detected you use it and have sold that info onto someone else.

      • The attackers know either you have a Pokemon Go or an Apple account - not necessarily both.

      • You yourself provided that information somewhere

      • Another one of your accounts, where you have used your email address and talked about Pokemon Go on iPhone, has been compromised





      share|improve this answer



























        13














        Pokemon Go is a very popular app. I would not be surprised if that email was being scatter-gunned to see who might panic and do what the phishing email wants. The other possibilities include:



        • Niantic (the devs of Pokemon Go) has been compromised - not very likely

        • The providers of another app on your phone have detected you use it and have sold that info onto someone else.

        • The attackers know either you have a Pokemon Go or an Apple account - not necessarily both.

        • You yourself provided that information somewhere

        • Another one of your accounts, where you have used your email address and talked about Pokemon Go on iPhone, has been compromised





        share|improve this answer

























          13












          13








          13







          Pokemon Go is a very popular app. I would not be surprised if that email was being scatter-gunned to see who might panic and do what the phishing email wants. The other possibilities include:



          • Niantic (the devs of Pokemon Go) has been compromised - not very likely

          • The providers of another app on your phone have detected you use it and have sold that info onto someone else.

          • The attackers know either you have a Pokemon Go or an Apple account - not necessarily both.

          • You yourself provided that information somewhere

          • Another one of your accounts, where you have used your email address and talked about Pokemon Go on iPhone, has been compromised





          share|improve this answer













          Pokemon Go is a very popular app. I would not be surprised if that email was being scatter-gunned to see who might panic and do what the phishing email wants. The other possibilities include:



          • Niantic (the devs of Pokemon Go) has been compromised - not very likely

          • The providers of another app on your phone have detected you use it and have sold that info onto someone else.

          • The attackers know either you have a Pokemon Go or an Apple account - not necessarily both.

          • You yourself provided that information somewhere

          • Another one of your accounts, where you have used your email address and talked about Pokemon Go on iPhone, has been compromised






          share|improve this answer












          share|improve this answer



          share|improve this answer










          answered Mar 14 at 13:29









          520520

          35114




          35114





















              10














              Former Apple Inc. employee here. I have seen some shady stuff on people's phones and what you're experiencing isn't new--I have received the same emails. That's how they phish people. They get receivers of the email to contact them, then try to dispute the charge, unknowingly giving over private information to help "resolve" the issue. If your account has been compromised, they can see your app purchases. Purchases include free downloads. Here's what I'd suggest to check:



              1. Firstly, check the email address from the email. If it's non-Apple, dismiss it.

              2. Check the devices associated with your phone. Settings>Your Name(top). There, if you scroll down, you should see a list of your Apple Devices. If you do not recognize one. You may have someone signed in to your account.

              3. Check your "Family Sharing" tab. If you are a part of a family you shouldn't be, you may be compromised. (Settings>Your Name>Family Sharing)

              4. Check to see if there is a "Profile" on your phone. This is popular with business phones to monitor employees, but some people use this maliciously. (Settings>General ... scroll and look for something that may not belong).

              5. This one is tricky, make sure when you're connected to wifi, you're on a known secure network. Users often join networks to save their data, but I personally have known people to travel with a hotspot in populated areas to get people to connect to it. From there, they can find a way to mess with your device or information. Same goes with connecting to those free chargers in public spaces, like at airports -- be very wary.

              Hope this helps someone






              share|improve this answer








              New contributor




              user201921 is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
              Check out our Code of Conduct.















              • 5





                Also keep in mind that email addresses are pretty easy to spoof; in doing step 1, also look at the full message source/headers in your email client and look for the Received: lines. If there are any of those other than your mail provider and apple.com, it's almost certainly a forgery.

                – fluffy
                2 days ago
















              10














              Former Apple Inc. employee here. I have seen some shady stuff on people's phones and what you're experiencing isn't new--I have received the same emails. That's how they phish people. They get receivers of the email to contact them, then try to dispute the charge, unknowingly giving over private information to help "resolve" the issue. If your account has been compromised, they can see your app purchases. Purchases include free downloads. Here's what I'd suggest to check:



              1. Firstly, check the email address from the email. If it's non-Apple, dismiss it.

              2. Check the devices associated with your phone. Settings>Your Name(top). There, if you scroll down, you should see a list of your Apple Devices. If you do not recognize one. You may have someone signed in to your account.

              3. Check your "Family Sharing" tab. If you are a part of a family you shouldn't be, you may be compromised. (Settings>Your Name>Family Sharing)

              4. Check to see if there is a "Profile" on your phone. This is popular with business phones to monitor employees, but some people use this maliciously. (Settings>General ... scroll and look for something that may not belong).

              5. This one is tricky, make sure when you're connected to wifi, you're on a known secure network. Users often join networks to save their data, but I personally have known people to travel with a hotspot in populated areas to get people to connect to it. From there, they can find a way to mess with your device or information. Same goes with connecting to those free chargers in public spaces, like at airports -- be very wary.

              Hope this helps someone






              share|improve this answer








              New contributor




              user201921 is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
              Check out our Code of Conduct.















              • 5





                Also keep in mind that email addresses are pretty easy to spoof; in doing step 1, also look at the full message source/headers in your email client and look for the Received: lines. If there are any of those other than your mail provider and apple.com, it's almost certainly a forgery.

                – fluffy
                2 days ago














              10












              10








              10







              Former Apple Inc. employee here. I have seen some shady stuff on people's phones and what you're experiencing isn't new--I have received the same emails. That's how they phish people. They get receivers of the email to contact them, then try to dispute the charge, unknowingly giving over private information to help "resolve" the issue. If your account has been compromised, they can see your app purchases. Purchases include free downloads. Here's what I'd suggest to check:



              1. Firstly, check the email address from the email. If it's non-Apple, dismiss it.

              2. Check the devices associated with your phone. Settings>Your Name(top). There, if you scroll down, you should see a list of your Apple Devices. If you do not recognize one. You may have someone signed in to your account.

              3. Check your "Family Sharing" tab. If you are a part of a family you shouldn't be, you may be compromised. (Settings>Your Name>Family Sharing)

              4. Check to see if there is a "Profile" on your phone. This is popular with business phones to monitor employees, but some people use this maliciously. (Settings>General ... scroll and look for something that may not belong).

              5. This one is tricky, make sure when you're connected to wifi, you're on a known secure network. Users often join networks to save their data, but I personally have known people to travel with a hotspot in populated areas to get people to connect to it. From there, they can find a way to mess with your device or information. Same goes with connecting to those free chargers in public spaces, like at airports -- be very wary.

              Hope this helps someone






              share|improve this answer








              New contributor




              user201921 is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
              Check out our Code of Conduct.










              Former Apple Inc. employee here. I have seen some shady stuff on people's phones and what you're experiencing isn't new--I have received the same emails. That's how they phish people. They get receivers of the email to contact them, then try to dispute the charge, unknowingly giving over private information to help "resolve" the issue. If your account has been compromised, they can see your app purchases. Purchases include free downloads. Here's what I'd suggest to check:



              1. Firstly, check the email address from the email. If it's non-Apple, dismiss it.

              2. Check the devices associated with your phone. Settings>Your Name(top). There, if you scroll down, you should see a list of your Apple Devices. If you do not recognize one. You may have someone signed in to your account.

              3. Check your "Family Sharing" tab. If you are a part of a family you shouldn't be, you may be compromised. (Settings>Your Name>Family Sharing)

              4. Check to see if there is a "Profile" on your phone. This is popular with business phones to monitor employees, but some people use this maliciously. (Settings>General ... scroll and look for something that may not belong).

              5. This one is tricky, make sure when you're connected to wifi, you're on a known secure network. Users often join networks to save their data, but I personally have known people to travel with a hotspot in populated areas to get people to connect to it. From there, they can find a way to mess with your device or information. Same goes with connecting to those free chargers in public spaces, like at airports -- be very wary.

              Hope this helps someone







              share|improve this answer








              New contributor




              user201921 is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
              Check out our Code of Conduct.









              share|improve this answer



              share|improve this answer






              New contributor




              user201921 is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
              Check out our Code of Conduct.









              answered 2 days ago









              user201921user201921

              1012




              1012




              New contributor




              user201921 is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
              Check out our Code of Conduct.





              New contributor





              user201921 is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
              Check out our Code of Conduct.






              user201921 is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
              Check out our Code of Conduct.







              • 5





                Also keep in mind that email addresses are pretty easy to spoof; in doing step 1, also look at the full message source/headers in your email client and look for the Received: lines. If there are any of those other than your mail provider and apple.com, it's almost certainly a forgery.

                – fluffy
                2 days ago













              • 5





                Also keep in mind that email addresses are pretty easy to spoof; in doing step 1, also look at the full message source/headers in your email client and look for the Received: lines. If there are any of those other than your mail provider and apple.com, it's almost certainly a forgery.

                – fluffy
                2 days ago








              5




              5





              Also keep in mind that email addresses are pretty easy to spoof; in doing step 1, also look at the full message source/headers in your email client and look for the Received: lines. If there are any of those other than your mail provider and apple.com, it's almost certainly a forgery.

              – fluffy
              2 days ago






              Also keep in mind that email addresses are pretty easy to spoof; in doing step 1, also look at the full message source/headers in your email client and look for the Received: lines. If there are any of those other than your mail provider and apple.com, it's almost certainly a forgery.

              – fluffy
              2 days ago












              -2














              Answer void in light of updated info in question.



              Sounds like a valid invoice for an in-app purchase. Invoice in this case just means receipt - not that you need make additional payment action. So just Apple notifying you its processing the payment and that the source was from (within) Pokemon Go.



              But info for scammers is readily available. Its all part of the marketing frenzy that has been building since the mid-1990s. Lots of websites and businesses trade marketing data to help sell products. Lots bad security on those databases or legitimate sales with too few questions asked.



              Read those OS and application EULAs. Getting marketing data about your interests to vendors who might sell similar or connected products is an intrinsic part of commercial OS and apps -- and even ISO standards. Cookies are just one avenue for direct query of your phone/computer. Almost 20 years ago I was surprised as a neophyte web administrator that Microsoft websites automatically harvested the default email address of every website user. A legitimate HTTP query from server which even compliant open source software must have the ability to honor (but can default responding to be off).



              To be honest, I would not be surprised if most web browers cough up matching app info to the right webserver queries. Apple/iTunes is a LOT better about privacy from vendors than Android/PlayStore but not immune I bet. iTunes itself may let registered vendors indirectly send messages to app owners based on specified criteria...for a fee. I would expect Apple policy is to review such messages first but everyone has bad or rushed days. I do not know actual details though since I am not a registered vendor.






              share|improve this answer










              New contributor




              NotSoSimple is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
              Check out our Code of Conduct.




















              • So go through all the options about privacy on your ITunes account as well as iOS and each browser and app. App notices is a new buzzword to ways vendors can intrude into privacy.

                – NotSoSimple
                Mar 14 at 15:49











              • Hey, I added lines that build up to my suspicion. This is almost definitly not from apple / iTunes

                – Peter
                Mar 14 at 15:52






              • 1





                Right email client can see actual header. Suppressing visible email header is not as suspicious as you might think. Some big companies do it to keep people from replying to unmonitored email address.

                – NotSoSimple
                Mar 14 at 16:02











              • But Yeah big alert if more than one typo & attaching PDF without comment especially when size says it could have been inline.

                – NotSoSimple
                Mar 14 at 16:05















              -2














              Answer void in light of updated info in question.



              Sounds like a valid invoice for an in-app purchase. Invoice in this case just means receipt - not that you need make additional payment action. So just Apple notifying you its processing the payment and that the source was from (within) Pokemon Go.



              But info for scammers is readily available. Its all part of the marketing frenzy that has been building since the mid-1990s. Lots of websites and businesses trade marketing data to help sell products. Lots bad security on those databases or legitimate sales with too few questions asked.



              Read those OS and application EULAs. Getting marketing data about your interests to vendors who might sell similar or connected products is an intrinsic part of commercial OS and apps -- and even ISO standards. Cookies are just one avenue for direct query of your phone/computer. Almost 20 years ago I was surprised as a neophyte web administrator that Microsoft websites automatically harvested the default email address of every website user. A legitimate HTTP query from server which even compliant open source software must have the ability to honor (but can default responding to be off).



              To be honest, I would not be surprised if most web browers cough up matching app info to the right webserver queries. Apple/iTunes is a LOT better about privacy from vendors than Android/PlayStore but not immune I bet. iTunes itself may let registered vendors indirectly send messages to app owners based on specified criteria...for a fee. I would expect Apple policy is to review such messages first but everyone has bad or rushed days. I do not know actual details though since I am not a registered vendor.






              share|improve this answer










              New contributor




              NotSoSimple is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
              Check out our Code of Conduct.




















              • So go through all the options about privacy on your ITunes account as well as iOS and each browser and app. App notices is a new buzzword to ways vendors can intrude into privacy.

                – NotSoSimple
                Mar 14 at 15:49











              • Hey, I added lines that build up to my suspicion. This is almost definitly not from apple / iTunes

                – Peter
                Mar 14 at 15:52






              • 1





                Right email client can see actual header. Suppressing visible email header is not as suspicious as you might think. Some big companies do it to keep people from replying to unmonitored email address.

                – NotSoSimple
                Mar 14 at 16:02











              • But Yeah big alert if more than one typo & attaching PDF without comment especially when size says it could have been inline.

                – NotSoSimple
                Mar 14 at 16:05













              -2












              -2








              -2







              Answer void in light of updated info in question.



              Sounds like a valid invoice for an in-app purchase. Invoice in this case just means receipt - not that you need make additional payment action. So just Apple notifying you its processing the payment and that the source was from (within) Pokemon Go.



              But info for scammers is readily available. Its all part of the marketing frenzy that has been building since the mid-1990s. Lots of websites and businesses trade marketing data to help sell products. Lots bad security on those databases or legitimate sales with too few questions asked.



              Read those OS and application EULAs. Getting marketing data about your interests to vendors who might sell similar or connected products is an intrinsic part of commercial OS and apps -- and even ISO standards. Cookies are just one avenue for direct query of your phone/computer. Almost 20 years ago I was surprised as a neophyte web administrator that Microsoft websites automatically harvested the default email address of every website user. A legitimate HTTP query from server which even compliant open source software must have the ability to honor (but can default responding to be off).



              To be honest, I would not be surprised if most web browers cough up matching app info to the right webserver queries. Apple/iTunes is a LOT better about privacy from vendors than Android/PlayStore but not immune I bet. iTunes itself may let registered vendors indirectly send messages to app owners based on specified criteria...for a fee. I would expect Apple policy is to review such messages first but everyone has bad or rushed days. I do not know actual details though since I am not a registered vendor.






              share|improve this answer










              New contributor




              NotSoSimple is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
              Check out our Code of Conduct.










              Answer void in light of updated info in question.



              Sounds like a valid invoice for an in-app purchase. Invoice in this case just means receipt - not that you need make additional payment action. So just Apple notifying you its processing the payment and that the source was from (within) Pokemon Go.



              But info for scammers is readily available. Its all part of the marketing frenzy that has been building since the mid-1990s. Lots of websites and businesses trade marketing data to help sell products. Lots bad security on those databases or legitimate sales with too few questions asked.



              Read those OS and application EULAs. Getting marketing data about your interests to vendors who might sell similar or connected products is an intrinsic part of commercial OS and apps -- and even ISO standards. Cookies are just one avenue for direct query of your phone/computer. Almost 20 years ago I was surprised as a neophyte web administrator that Microsoft websites automatically harvested the default email address of every website user. A legitimate HTTP query from server which even compliant open source software must have the ability to honor (but can default responding to be off).



              To be honest, I would not be surprised if most web browers cough up matching app info to the right webserver queries. Apple/iTunes is a LOT better about privacy from vendors than Android/PlayStore but not immune I bet. iTunes itself may let registered vendors indirectly send messages to app owners based on specified criteria...for a fee. I would expect Apple policy is to review such messages first but everyone has bad or rushed days. I do not know actual details though since I am not a registered vendor.







              share|improve this answer










              New contributor




              NotSoSimple is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
              Check out our Code of Conduct.









              share|improve this answer



              share|improve this answer








              edited 2 days ago









              schroeder

              77.5k30171207




              77.5k30171207






              New contributor




              NotSoSimple is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
              Check out our Code of Conduct.









              answered Mar 14 at 15:41









              NotSoSimpleNotSoSimple

              11




              11




              New contributor




              NotSoSimple is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
              Check out our Code of Conduct.





              New contributor





              NotSoSimple is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
              Check out our Code of Conduct.






              NotSoSimple is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
              Check out our Code of Conduct.












              • So go through all the options about privacy on your ITunes account as well as iOS and each browser and app. App notices is a new buzzword to ways vendors can intrude into privacy.

                – NotSoSimple
                Mar 14 at 15:49











              • Hey, I added lines that build up to my suspicion. This is almost definitly not from apple / iTunes

                – Peter
                Mar 14 at 15:52






              • 1





                Right email client can see actual header. Suppressing visible email header is not as suspicious as you might think. Some big companies do it to keep people from replying to unmonitored email address.

                – NotSoSimple
                Mar 14 at 16:02











              • But Yeah big alert if more than one typo & attaching PDF without comment especially when size says it could have been inline.

                – NotSoSimple
                Mar 14 at 16:05

















              • So go through all the options about privacy on your ITunes account as well as iOS and each browser and app. App notices is a new buzzword to ways vendors can intrude into privacy.

                – NotSoSimple
                Mar 14 at 15:49











              • Hey, I added lines that build up to my suspicion. This is almost definitly not from apple / iTunes

                – Peter
                Mar 14 at 15:52






              • 1





                Right email client can see actual header. Suppressing visible email header is not as suspicious as you might think. Some big companies do it to keep people from replying to unmonitored email address.

                – NotSoSimple
                Mar 14 at 16:02











              • But Yeah big alert if more than one typo & attaching PDF without comment especially when size says it could have been inline.

                – NotSoSimple
                Mar 14 at 16:05
















              So go through all the options about privacy on your ITunes account as well as iOS and each browser and app. App notices is a new buzzword to ways vendors can intrude into privacy.

              – NotSoSimple
              Mar 14 at 15:49





              So go through all the options about privacy on your ITunes account as well as iOS and each browser and app. App notices is a new buzzword to ways vendors can intrude into privacy.

              – NotSoSimple
              Mar 14 at 15:49













              Hey, I added lines that build up to my suspicion. This is almost definitly not from apple / iTunes

              – Peter
              Mar 14 at 15:52





              Hey, I added lines that build up to my suspicion. This is almost definitly not from apple / iTunes

              – Peter
              Mar 14 at 15:52




              1




              1





              Right email client can see actual header. Suppressing visible email header is not as suspicious as you might think. Some big companies do it to keep people from replying to unmonitored email address.

              – NotSoSimple
              Mar 14 at 16:02





              Right email client can see actual header. Suppressing visible email header is not as suspicious as you might think. Some big companies do it to keep people from replying to unmonitored email address.

              – NotSoSimple
              Mar 14 at 16:02













              But Yeah big alert if more than one typo & attaching PDF without comment especially when size says it could have been inline.

              – NotSoSimple
              Mar 14 at 16:05





              But Yeah big alert if more than one typo & attaching PDF without comment especially when size says it could have been inline.

              – NotSoSimple
              Mar 14 at 16:05











              -3














              If there is no actual email header even to special email clients that can show invisible email header info...then you need to suspect that it did not arrive by email. No header is like letter without address, won't get delivered.



              This can happen at the email server if server is running a bad app or otherwise got intrusion. If its Apple mail or other really big and professional provider, I would not expect this. But college email servers and other lower level or private providers might occasionally have issues.



              * Its possible for another "bad" app on your phone to inject stuff into your email queue if you are not using webmail. * I would not expect this if all your apps are through Apple Store/iTunes.



              But if you jail broke your iPhone to add any unapproved apps...
              now is the time to re-evaluate them. Even if they appear to deliver the promised functions (game?/game hack), they may also do something else as well.






              share|improve this answer








              New contributor




              NotSoSimple is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
              Check out our Code of Conduct.
























                -3














                If there is no actual email header even to special email clients that can show invisible email header info...then you need to suspect that it did not arrive by email. No header is like letter without address, won't get delivered.



                This can happen at the email server if server is running a bad app or otherwise got intrusion. If its Apple mail or other really big and professional provider, I would not expect this. But college email servers and other lower level or private providers might occasionally have issues.



                * Its possible for another "bad" app on your phone to inject stuff into your email queue if you are not using webmail. * I would not expect this if all your apps are through Apple Store/iTunes.



                But if you jail broke your iPhone to add any unapproved apps...
                now is the time to re-evaluate them. Even if they appear to deliver the promised functions (game?/game hack), they may also do something else as well.






                share|improve this answer








                New contributor




                NotSoSimple is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
                Check out our Code of Conduct.






















                  -3












                  -3








                  -3







                  If there is no actual email header even to special email clients that can show invisible email header info...then you need to suspect that it did not arrive by email. No header is like letter without address, won't get delivered.



                  This can happen at the email server if server is running a bad app or otherwise got intrusion. If its Apple mail or other really big and professional provider, I would not expect this. But college email servers and other lower level or private providers might occasionally have issues.



                  * Its possible for another "bad" app on your phone to inject stuff into your email queue if you are not using webmail. * I would not expect this if all your apps are through Apple Store/iTunes.



                  But if you jail broke your iPhone to add any unapproved apps...
                  now is the time to re-evaluate them. Even if they appear to deliver the promised functions (game?/game hack), they may also do something else as well.






                  share|improve this answer








                  New contributor




                  NotSoSimple is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
                  Check out our Code of Conduct.










                  If there is no actual email header even to special email clients that can show invisible email header info...then you need to suspect that it did not arrive by email. No header is like letter without address, won't get delivered.



                  This can happen at the email server if server is running a bad app or otherwise got intrusion. If its Apple mail or other really big and professional provider, I would not expect this. But college email servers and other lower level or private providers might occasionally have issues.



                  * Its possible for another "bad" app on your phone to inject stuff into your email queue if you are not using webmail. * I would not expect this if all your apps are through Apple Store/iTunes.



                  But if you jail broke your iPhone to add any unapproved apps...
                  now is the time to re-evaluate them. Even if they appear to deliver the promised functions (game?/game hack), they may also do something else as well.







                  share|improve this answer








                  New contributor




                  NotSoSimple is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
                  Check out our Code of Conduct.









                  share|improve this answer



                  share|improve this answer






                  New contributor




                  NotSoSimple is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
                  Check out our Code of Conduct.









                  answered 2 days ago









                  NotSoSimpleNotSoSimple

                  11




                  11




                  New contributor




                  NotSoSimple is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
                  Check out our Code of Conduct.





                  New contributor





                  NotSoSimple is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
                  Check out our Code of Conduct.






                  NotSoSimple is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
                  Check out our Code of Conduct.




















                      Peter is a new contributor. Be nice, and check out our Code of Conduct.









                      draft saved

                      draft discarded


















                      Peter is a new contributor. Be nice, and check out our Code of Conduct.












                      Peter is a new contributor. Be nice, and check out our Code of Conduct.











                      Peter is a new contributor. Be nice, and check out our Code of Conduct.














                      Thanks for contributing an answer to Information Security Stack Exchange!


                      • Please be sure to answer the question. Provide details and share your research!

                      But avoid


                      • Asking for help, clarification, or responding to other answers.

                      • Making statements based on opinion; back them up with references or personal experience.

                      To learn more, see our tips on writing great answers.




                      draft saved


                      draft discarded














                      StackExchange.ready(
                      function ()
                      StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2fsecurity.stackexchange.com%2fquestions%2f205340%2fhow-could-a-scammer-know-the-apps-on-my-phone-itunes-account%23new-answer', 'question_page');

                      );

                      Post as a guest















                      Required, but never shown





















































                      Required, but never shown














                      Required, but never shown












                      Required, but never shown







                      Required, but never shown

































                      Required, but never shown














                      Required, but never shown












                      Required, but never shown







                      Required, but never shown







                      Popular posts from this blog

                      Færeyskur hestur Heimild | Tengill | Tilvísanir | LeiðsagnarvalRossið - síða um færeyska hrossið á færeyskuGott ár hjá færeyska hestinum

                      He _____ here since 1970 . Answer needed [closed]What does “since he was so high” mean?Meaning of “catch birds for”?How do I ensure “since” takes the meaning I want?“Who cares here” meaningWhat does “right round toward” mean?the time tense (had now been detected)What does the phrase “ring around the roses” mean here?Correct usage of “visited upon”Meaning of “foiled rail sabotage bid”It was the third time I had gone to Rome or It is the third time I had been to Rome

                      Slayer Innehåll Historia | Stil, komposition och lyrik | Bandets betydelse och framgångar | Sidoprojekt och samarbeten | Kontroverser | Medlemmar | Utmärkelser och nomineringar | Turnéer och festivaler | Diskografi | Referenser | Externa länkar | Navigeringsmenywww.slayer.net”Metal Massacre vol. 1””Metal Massacre vol. 3””Metal Massacre Volume III””Show No Mercy””Haunting the Chapel””Live Undead””Hell Awaits””Reign in Blood””Reign in Blood””Gold & Platinum – Reign in Blood””Golden Gods Awards Winners”originalet”Kerrang! Hall Of Fame””Slayer Looks Back On 37-Year Career In New Video Series: Part Two””South of Heaven””Gold & Platinum – South of Heaven””Seasons in the Abyss””Gold & Platinum - Seasons in the Abyss””Divine Intervention””Divine Intervention - Release group by Slayer””Gold & Platinum - Divine Intervention””Live Intrusion””Undisputed Attitude””Abolish Government/Superficial Love””Release “Slatanic Slaughter: A Tribute to Slayer” by Various Artists””Diabolus in Musica””Soundtrack to the Apocalypse””God Hates Us All””Systematic - Relationships””War at the Warfield””Gold & Platinum - War at the Warfield””Soundtrack to the Apocalypse””Gold & Platinum - Still Reigning””Metallica, Slayer, Iron Mauden Among Winners At Metal Hammer Awards””Eternal Pyre””Eternal Pyre - Slayer release group””Eternal Pyre””Metal Storm Awards 2006””Kerrang! Hall Of Fame””Slayer Wins 'Best Metal' Grammy Award””Slayer Guitarist Jeff Hanneman Dies””Bullet-For My Valentine booed at Metal Hammer Golden Gods Awards””Unholy Aliance””The End Of Slayer?””Slayer: We Could Thrash Out Two More Albums If We're Fast Enough...””'The Unholy Alliance: Chapter III' UK Dates Added”originalet”Megadeth And Slayer To Co-Headline 'Canadian Carnage' Trek”originalet”World Painted Blood””Release “World Painted Blood” by Slayer””Metallica Heading To Cinemas””Slayer, Megadeth To Join Forces For 'European Carnage' Tour - Dec. 18, 2010”originalet”Slayer's Hanneman Contracts Acute Infection; Band To Bring In Guest Guitarist””Cannibal Corpse's Pat O'Brien Will Step In As Slayer's Guest Guitarist”originalet”Slayer’s Jeff Hanneman Dead at 49””Dave Lombardo Says He Made Only $67,000 In 2011 While Touring With Slayer””Slayer: We Do Not Agree With Dave Lombardo's Substance Or Timeline Of Events””Slayer Welcomes Drummer Paul Bostaph Back To The Fold””Slayer Hope to Unveil Never-Before-Heard Jeff Hanneman Material on Next Album””Slayer Debut New Song 'Implode' During Surprise Golden Gods Appearance””Release group Repentless by Slayer””Repentless - Slayer - Credits””Slayer””Metal Storm Awards 2015””Slayer - to release comic book "Repentless #1"””Slayer To Release 'Repentless' 6.66" Vinyl Box Set””BREAKING NEWS: Slayer Announce Farewell Tour””Slayer Recruit Lamb of God, Anthrax, Behemoth + Testament for Final Tour””Slayer lägger ner efter 37 år””Slayer Announces Second North American Leg Of 'Final' Tour””Final World Tour””Slayer Announces Final European Tour With Lamb of God, Anthrax And Obituary””Slayer To Tour Europe With Lamb of God, Anthrax And Obituary””Slayer To Play 'Last French Show Ever' At Next Year's Hellfst””Slayer's Final World Tour Will Extend Into 2019””Death Angel's Rob Cavestany On Slayer's 'Farewell' Tour: 'Some Of Us Could See This Coming'””Testament Has No Plans To Retire Anytime Soon, Says Chuck Billy””Anthrax's Scott Ian On Slayer's 'Farewell' Tour Plans: 'I Was Surprised And I Wasn't Surprised'””Slayer””Slayer's Morbid Schlock””Review/Rock; For Slayer, the Mania Is the Message””Slayer - Biography””Slayer - Reign In Blood”originalet”Dave Lombardo””An exclusive oral history of Slayer”originalet”Exclusive! Interview With Slayer Guitarist Jeff Hanneman”originalet”Thinking Out Loud: Slayer's Kerry King on hair metal, Satan and being polite””Slayer Lyrics””Slayer - Biography””Most influential artists for extreme metal music””Slayer - Reign in Blood””Slayer guitarist Jeff Hanneman dies aged 49””Slatanic Slaughter: A Tribute to Slayer””Gateway to Hell: A Tribute to Slayer””Covered In Blood””Slayer: The Origins of Thrash in San Francisco, CA.””Why They Rule - #6 Slayer”originalet”Guitar World's 100 Greatest Heavy Metal Guitarists Of All Time”originalet”The fans have spoken: Slayer comes out on top in readers' polls”originalet”Tribute to Jeff Hanneman (1964-2013)””Lamb Of God Frontman: We Sound Like A Slayer Rip-Off””BEHEMOTH Frontman Pays Tribute To SLAYER's JEFF HANNEMAN””Slayer, Hatebreed Doing Double Duty On This Year's Ozzfest””System of a Down””Lacuna Coil’s Andrea Ferro Talks Influences, Skateboarding, Band Origins + More””Slayer - Reign in Blood””Into The Lungs of Hell””Slayer rules - en utställning om fans””Slayer and Their Fans Slashed Through a No-Holds-Barred Night at Gas Monkey””Home””Slayer””Gold & Platinum - The Big 4 Live from Sofia, Bulgaria””Exclusive! Interview With Slayer Guitarist Kerry King””2008-02-23: Wiltern, Los Angeles, CA, USA””Slayer's Kerry King To Perform With Megadeth Tonight! - Oct. 21, 2010”originalet”Dave Lombardo - Biography”Slayer Case DismissedArkiveradUltimate Classic Rock: Slayer guitarist Jeff Hanneman dead at 49.”Slayer: "We could never do any thing like Some Kind Of Monster..."””Cannibal Corpse'S Pat O'Brien Will Step In As Slayer'S Guest Guitarist | The Official Slayer Site”originalet”Slayer Wins 'Best Metal' Grammy Award””Slayer Guitarist Jeff Hanneman Dies””Kerrang! Awards 2006 Blog: Kerrang! Hall Of Fame””Kerrang! Awards 2013: Kerrang! Legend”originalet”Metallica, Slayer, Iron Maien Among Winners At Metal Hammer Awards””Metal Hammer Golden Gods Awards””Bullet For My Valentine Booed At Metal Hammer Golden Gods Awards””Metal Storm Awards 2006””Metal Storm Awards 2015””Slayer's Concert History””Slayer - Relationships””Slayer - Releases”Slayers officiella webbplatsSlayer på MusicBrainzOfficiell webbplatsSlayerSlayerr1373445760000 0001 1540 47353068615-5086262726cb13906545x(data)6033143kn20030215029