Apple Pay scams rarely involve breaking Apple's technology — the encryption and tokenization are strong. Instead, scammers trick people around it: fake payment screenshots on marketplaces, "accidental" Apple Cash transfers sent from stolen cards, impersonation of Apple Support, and phishing that captures your card details and verification code so the scammer can add your card to their Apple Wallet. Knowing these four patterns covers the vast majority of Apple Pay fraud.
Scam 1: The Fake Payment Screenshot
You are selling something on Facebook Marketplace, Craigslist, or OfferUp. The buyer agrees quickly, says they paid with Apple Pay or Apple Cash, and sends a screenshot showing the transfer as "pending" or complete. The screenshot is fabricated — editing a payment confirmation image takes minutes with basic tools or template generators. Variants include fake emails styled as Apple payment receipts, sometimes claiming the money is "on hold until you confirm shipment" or until you send a tracking number.
The defense: a screenshot is not money, and neither is an email. Apple Cash payments between people appear in your own Wallet app and Apple Cash balance almost immediately. Open Wallet yourself, check your balance, and do not hand over goods until the funds are actually there — in your app, not in their picture. Also know that Apple Cash has no "hold until shipment" escrow feature; any message claiming otherwise is fraudulent.
Got a suspicious email?
Paste it here for an instant analysis.
No signup · 6 detection layers · Results in seconds · Cmd+Enter
Scam 2: The "Accidental" Transfer
Money appears in your Apple Cash out of nowhere, followed by an apologetic message: "So sorry, I sent that to the wrong person — could you send it back?" The catch: the incoming payment was funded with a stolen card or hacked account. If you "return" it, you are sending your own clean money; days or weeks later, the original fraudulent payment is reversed when the theft is reported, and you are out the full amount. This is the same mechanic as the classic Cash App accidental-payment scam.
The defense: never manually refund an unexpected payment. Contact Apple Support through official channels and ask them to reverse the erroneous transaction properly. A legitimate sender who genuinely fat-fingered a payment can recover it through their own bank or Apple — they do not need you to send anything.
Scam 3: Apple Support Impersonation
You get a call — often with caller ID spoofed to show Apple's real support number — or an urgent text: "Your Apple ID has been compromised" or "A suspicious Apple Pay charge of $749 was made on your account." The fake agent walks you through "securing" your account, which really means capturing your Apple Account password and the two-factor code sent to your device, or persuading you to install a screen-sharing app, or directing you to buy gift cards to "verify" or "protect" your funds.
The defense: Apple does not cold-call you about security problems, and no legitimate Apple representative will ever ask for your password, a verification code, or payment in gift cards. If you get such a call, hang up and contact Apple yourself through the Support app or getsupport.apple.com. Never read a two-factor code to anyone — that code is the key to your account, and Apple already knows everything it needs to know.
Scam 4: Phishing Your Card Into Their Wallet
This is the most technically interesting variant and the engine behind many of the mass smishing campaigns you have seen — fake toll-road fines, undeliverable-package notices like the USPS scam text, and bogus refund alerts. The phishing page collects your full card number, expiry, and CVV. Then, in real time, the scammer enters your card into Apple Pay on a phone they control. Your bank sends you a one-time verification code to approve adding the card to a new device — and the phishing page (or a follow-up call from your "bank") asks you for that code. Hand it over, and your physical card is now provisioned in the criminal's wallet, ready for tap-to-pay spending sprees and in-store purchases that are hard to dispute because they pass all of the bank's authentication checks.
The defense: the one-time code your bank sends when a card is added to Apple Pay exists solely to confirm that you are the one adding it. If you did not just try to add your card to a new device, that code arriving is itself an alarm — someone else has your card number. Never enter it on a website or read it to a caller. Call your bank on the number on your card and get the card reissued.
General Rules for Apple Pay and Apple Cash Safety
- Treat Apple Cash like cash. Person-to-person payments have no purchase protection. Use it with people you know; for strangers on marketplaces, prefer payment methods with buyer/seller protection or transact in person.
- Verify money in your own app, never in screenshots or emails.
- Never share verification codes. Not with buyers, not with "support," not with your "bank." No exceptions.
- Ignore urgency. Suspicious-charge panic and expiring-refund pressure are manufactured. Real problems survive the two minutes it takes to contact Apple or your bank directly.
- Report it. Forward phishing emails to [email protected], report scam texts by forwarding to 7726, and file with the FTC at ReportFraud.ftc.gov. If money was lost, our guide on getting money back after a scam covers your options by payment method.
Check Before You Trust
Every Apple Pay scam starts with a message: the buyer's screenshot, the security alert, the toll fine, the refund notice. That makes every one of them checkable before any damage is done. Paste the suspicious text, email, or link into IsThisAScam.to and get a free, instant analysis of the sender, the URL, and the manipulation patterns in the wording — no signup required.