Some scams are so phony looking, they make you laugh without skepticism. Then there’s the Amazon phishing scam circulating the Internet recently. This scam is targeting both Amazon Prime members and regular customers, and it’s very sneaky.
Scammers are sending fake emails telling customers their order cannot be shipped, then leading them to a phony Amazon-looking website to steal personal information.
Tis the season, after all, and scammers love to feign on holiday shoppers.
What these fake, official-looking emails really look like
The subject line states: “Your Amazon.com order cannot be shipped.”
And the body of the email begins as:
There was a problem processing your order. You will not be able to access your account or place orders with us until we confirm your information. Click here to confirm your account.
The email will go on to tell you not to open any new Amazon accounts. Then, there’s a link that takes you to a very real looking “Amazon” page.
Treat this link like it’s the bait at the end of a fishing pole and you’re the fish. Once you click, you’ve just placed yourself in a scammers boat. Once you enter your name, address or credit card information to this site, you become their dinner.
Do not click the link in the email. If you do, it’s even more important that you do not enter any information. Doing so is giving scammers everything they want.
To make it even more convincing, once you give away all your information by clicking “Save & Continue,” the scammers lead you to the real Amazon.com.
The very official-looking emails make it too easy to fall victim to this Amazon phishing scam. But with few things in mind, you can avoid a holiday disaster.
Where’s the s?
Websites like Amazon who deal with financial information will have “https” at the beginning of the URL. This indicates the website is secure.
Look at the URL of the website. Does it begin with “https” (with an “s")? If it does, then the website will keep your information secure. On the contrary, if a URL begins with “http” it is NOT secure and you should back out.
Put a magnifying glass over the URL
The URL of a website will indicate if the site is real or fake. Scammers will try to manipulate you by creating domain names that look very much like the company’s domain they’re posing as. Or something that could look real. Here are some examples:
Fake: amaz0n.com or amazoncustomerservice.com
Examine the email address too
Scammers use the same tactic just described with email addresses too, so take a close look at who you’re receiving a mail from.
The sender’s email should end in @amazon.com. Anything that ends with another email provider (like firstname.lastname@example.org) is fake and a scammer.
If you want to check your Amazon account…
Go directly to https://www.amazon.com/ and log in.
Then you can safely confirm if “your Amazon.com order could not be shipped” or treat yourself to a candy cane for avoiding this holiday phishing scam.