Phishing scam threatens Amazon shoppers

 © Laurentiu Iordache/123rf.com
© Laurentiu Iordache/123rf.com
 © Laurentiu Iordache/123rf.com
© Laurentiu Iordache/123rf.com

Phishing scam threatens Amazon shoppers

by: Grafenweohr CID Office | .
Department of the Army | .
published: January 23, 2017

A new phishing scam threatens Amazon.com shoppers in an attempt to steal credit card information. Incidents have been reported in Australia and the United Kingdom, but the phishing scam is expected to continue and grow.

An email is sent to Amazon customers with the subject line “Your Amazon.com order cannot be shipped.” The email claims a problem occurred processing an order and unless the information requested is confirmed, the account cannot be accessed and new orders cannot be placed. A ‘click here’ link is added leading the customer to an authentic-looking page to confirm the name, address and credit card information (including expiration and CVV security code).

To make the website appear even more authentic, the customer is automatically redirected to the actual Amazon website after hitting the Save & Continue button, not realizing personal information was provided to cyber criminals. Furthermore, the email contains several grammar errors.

If you receive an email that makes you suspicious, Amazon recommends taking the following steps:
a. Check whom the email is from; if the sender does not use a “@amazon.com” email address, it is fake!
b. Visit the “Your Orders” page of your Amazon account to determine if any of your recent orders have fulfillment, billing or shipping issues.
c. Visit “Your Account” to check your payment options. Amazon has informed its customers that if you are not prompted to update your billing info on your account’s “Manage Payment Options” page, the email you received is not from Amazon.
d. Report the issue to stop-spoofing[at]amazon[dot]com and attach the suspicious email. Amazon doesn’t respond to these emails, but the company does investigate potential issues.

CID encourages everyone in the community to be cautious when receiving e-mails that are not common or that are from a company or organization you do not recognize. Do not click on an embedded link, instead, go directly to the website. Further, be suspicious of emails that contain numerous grammar mistakes.

Tags: Amazon, phishing, Scam, Email, online, Cyber, safety, Crime, security, Hacker
Related Content: No related content is available