I’m just speculating but maybe they (scammers) filled out a fraudulent activity form on the Apple site on behalf of the victim and then called before an Apple rep did.
Again I am going in to the realm of conjecture here over a little most, but maybe they had loads of information on Apple users from a data breach and this is how they were capitalising on them.
I’m just speculating but maybe they (scammers) filled out a fraudulent activity form on the Apple site on behalf of the victim and then called before an Apple rep did.
Wouldn’t they still need to know the username and telephone number then? That seems like something most people would be unable to link.
Again I am going in to the realm of conjecture here over a little most, but maybe they had loads of information on Apple users from a data breach and this is how they were capitalising on them.
Yeah that’s how I think they did it.