Possible Phishing??

[grimsargh]

I received an email through my alternate email address, supposedly from Apple Support, advising that my Apple ID has been locked for security reasons because someone just tried to log into my Apple ID from a different IP address. They provided the date and time, browser, IP address in Bali Indonesia and the OS as Windows. Obviously it was not me if this is true. They provided a "Click here to Verify your ID" which I did not do.

Would you consider this a phishing email to be ignored or should I change my password which is one it would be hard to guess anyway?

Thanks.
Kaye

 

[chas_m]

You can quickly tell if an email with a link in it is legitimate or not by hovering (not clicking!) on the link in macOS, or tap-and-hold on iOS. I agree that this particular email was likely to be a phishing attempt.

As a rule of thumb, if your password for an internet website -- any internet website -- is one that is memorable or in plain English, you should change it to something stronger asap. The days of memorable passwords is dead and gone, and Keychain can suggest strong passwords for you (and remember them), or you can use a password manager like 1Password if you need some extra features beyond just strong-password generation and storage.

Cheers
Chas

 

[grimsargh]

Thank you, Charles, I decided to change my password, a mix of letters and numbers, just to be on the safe side. Kaye