Suspicious

Phishings targeting Apple

Suspicious and active websites

Phishings targeting Apple

Suspicious and active websites

Active
8
New (7d)
4
Trend (7d)
Website
apple.com
About
AIApple ID phishing targets iCloud / Find My data and is commonly tied to iPhone resale fraud after device theft.
Hosts
TIME-HOST LTD (4) · Scaleway SAS (1) · Host SpA (1)
Countries
United KingdomUnited Kingdom (4) · United StatesUnited States (1) · ItalyItaly (1)
TLS certs
R13 (2) · R12 (2) · ZeroSSL GmbH (1)

Suspicious sites — confidence is not always 100%. Use for Threat Hunting or watchlists.

Last check (UTC) First seen (UTC) URL Screenshot Flags Details
2026-06-04 01:30 2026-06-03 01:01
https://icloudmailservice.sviluppo.host/v1/service
Screenshot of icloudmailservice.sviluppo.host OpenPhish urlscan Details
2026-06-04 01:30 2026-06-03 01:01
https://icloudoficial.com/expire/?5
Screenshot of icloudoficial.com OpenPhish Details
2026-06-04 01:30 2026-06-03 01:00
https://icloudoficial.com/?i=jizqc
Screenshot of icloudoficial.com OpenPhish Details
2026-06-04 01:30 2026-05-29 17:32
https://vip.gaokao.icloudwisdom.com
Screenshot of vip.gaokao.icloudwisdom.com urlscan Details
2026-06-04 01:30 2026-05-13 13:04
http://inc-icloudlocation.com
Screenshot of inc-icloudlocation.com OpenPhish Details
2026-06-04 01:30 2026-05-13 13:04
https://inc-icloudlocation.com/expire/?5
Screenshot of inc-icloudlocation.com OpenPhish Details
2026-06-04 01:30 2026-05-02 01:01
https://icloudmapa.com
Screenshot of icloudmapa.com OpenPhish Details
2026-06-04 01:30 2026-04-17 01:55
https://account-apple.eu
Screenshot of account-apple.eu PhishTank Details

Suspicious sites — confidence is not always 100%. Use for Threat Hunting or watchlists.

URL Screenshot Details
https://icloudmailservice.svi…
OpenPhish urlscan 		Screenshot of icloudmailservice.sviluppo.host Details
https://icloudoficial.com/exp…
OpenPhish 		Screenshot of icloudoficial.com Details
https://icloudoficial.com/?i=…
OpenPhish 		Screenshot of icloudoficial.com Details
https://vip.gaokao.icloudwisd…
urlscan 		Screenshot of vip.gaokao.icloudwisdom.com Details
http://inc-icloudlocation.com
OpenPhish 		Screenshot of inc-icloudlocation.com Details
https://inc-icloudlocation.co…
OpenPhish 		Screenshot of inc-icloudlocation.com Details
https://icloudmapa.com
OpenPhish 		Screenshot of icloudmapa.com Details
https://account-apple.eu
PhishTank 		Screenshot of account-apple.eu Details

AIHow to verify a real Apple URL

  • Legitimate Apple URLs always end in apple.com (e.g. www.apple.com, account.apple.com). Anything else — including look-alike typosquats, hyphenated variations, or unfamiliar TLDs like .xyz / .top / .vip — is not Apple.
  • The padlock icon proves TLS is active, not that the site is safe. Free DV certificates are issued to attackers in minutes; every active site listed above has a valid TLS certificate.
  • If you got the link from email, SMS, or social media, do not click it. Open apple.com from your browser bookmark or type the domain manually.
  • Real Apple pages almost never ask for credentials immediately after clicking from a message — treat any such redirect as a phishing attempt until the domain is verified.