Alert about a new phishing campaign on behalf of Amazon, if you receive this email be careful
A new scam is circulating online, cybercriminals have chosen the Amazon image again to deceive phishing victims.
The Internet User Safety Office (OSI) alert of a new campaign detected through fake emails. In them, the attackers impersonate Amazon’s identity to obtain users’ personal and banking details.
The first signal that warns us that we are facing a deception is given by the email address from which they sent us that message. They claim to be an official Amazon account, but the address does not show the same, here we can begin to distrust.
According to the information collected by the OSI, the following is indicated in the subject of the email: Dear …., You have (1) a package located in the Amazon distribution center. ” Other people may receive a different matter. If you haven’t made an order, here’s the second clue.
The most advisable thing in these cases is to enter the Amazon account from our browser, without using any of the links provided by the email, and check with our data if we have any pending orders or errors to notify the company.
As much as the mail is directed to us and there is personal data such as name and email, it is important to be suspicious. Getting that data on the internet is easier than it may seem. It is what is known as spoofing, a deception technique whereby the identity of another person or company is impersonated to scam victims.
At message body The user is invited to complete a survey “as quickly as possible” (this is another very common feature in phishing) to supposedly receive the best prizes. Be wary of any message requiring you to do something quickly or that I hinted a certain urgency, especially if in exchange it offers you prizes or spectacular offers
By entering the link included in the email, the victims are taken to a page that pretends to be the official Amazon website (as you can see in the gallery of images above) and a survey where we give personal data to exchange of juicy offers, little credible. An iPhone 12 Pro for 1.50 euros?
“When accessing these products, in order to place the order we must fill out a form with our personal data: name, surname, address, telephone, postal code, telephone number and email“They explain in the OSI. The credit card is also requested to pay that euro and a half that mobile phones cost in” offer “, but if we are already Amazon customers (and if we really went to the Amazon website) That information should not be required, just indicating the account and password would be enough.
Finally, once the data has been entered, when clicking on the button to send it, the page does not show any error. While the victims wait for their gifts at home, cybercriminals already have all the data they need to steal your money.