Scam alert: watch out for fake iCloud storage emails
Which? has seen six scam emails impersonating Apple’s iCloud service and using various claims to convince recipients to click on malicious links within the message.
The fake emails look like they’re from iCloud and tell you that your storage is full, your payment method is outdated or that there's suspicious activity on your account.
It's not the first time scammers have impersonated Apple, and it won't be the last.
Read on to learn more about these common impersonation scams and how to spot and avoid engaging with a scam email.
Sign up for scam alerts
Our emails will alert you to scams doing the rounds, and provide practical advice to keep you one step ahead of fraudsters.
Sign up for scam alerts
iCloud storage scam email
iCloud scam emails
1 / 6
A large collection of images displayed on this page are available at https://www.which.co.uk/news/article/scam-alert-watch-out-for-fake-icloud-storage-emails-aRn8g2W0HAl2
iCloud is Apple’s cloud storage service, which allows Apple's customers to store photos, files, passwords and other data.
Scammers are impersonating Apple and iCloud to send dodgy emails claiming that your iCloud storage is full or nearly full to rush you into taking quick action to extend your storage capacity.
In examples Which? saw, fraudsters added pressure by claiming that you’re ‘at risk of losing your photos, videos and important files', and that you must ‘upgrade today to keep your precious files and memories safe'. One email claimed to offer an 80% discount to 'upgrade now'.
Other emails stated that your payment method was out of date and needed to be updated in order to keep using iCloud services.
We also saw one email that said suspicious activities had been noticed on your iCloud account and it may be suspended.
All of these emails led to dodgy phishing websites that gather personal details, such as your name, email address and phone number and financial details, such as your bank information.
This information can go on to be sold on the dark web or used to craft a more convincing scam to target you with.
Tech brands are the most impersonated
Phishing attacks impersonating technology companies were the most common at the start of this year, according to insights shared by cyber security company Check Point.
Check Point has warned that scammers impersonating Microsoft were the most common, making up more than a third of phishing attempts it observed from January to March 2025.
Scammers impersonating Google made up one in eight phishing attempts and those that claimed to be from Apple accounted for just under one in 10.
Spotting and reporting scam emails
Common signs that an email may be the start of a scam include:
- An unofficial sender address.
- An impersonal greeting.
- Blurred and unofficial branding.
- Being pressured or rushed to take an action, especially if you're being asked to follow a link to do so.
- Requests for personal and financial information.
- Poor spelling and grammar.
Scam emails can be reported by forwarding them to report@phishing.gov.uk and emails impersonating iCloud can be sent to abuse@icloud.com. Malicious websites can be reported to the National Cyber Security Centre.
If you lose any money to a scam, call your bank immediately using the number on the back of your bank card and report it to Action Fraud, or call the police on 101 if you’re in Scotland.
