"Unauthorized activity on your Amazon account" phishing email doing rounds
Posted on 06 January 2014.
The pre-holiday online shopping frenzy has ended, but scam and phishing attempts continue unabated.

The latest email spam campaign aiming for login credentials is one that claims that unauthorised activity on the recipient's Amazon account has been spotted.

"Please be assured that because your card includes 'zero-liability fraud protection', you are not responsible for unauthorized use of your card," reassures the fake email, then urges the recipients to validate their Amazon account credentials by following an embedded link.

Over-trusting users who do so will land on a very convincing spoof of the Amazon login page, and will be pushed to enter their account credentials, name, address, phone number, and credit card information into a series of online forms (click on the screenshot to enlarge it):


Once all the information is submitted, the victim is politely thanked for their input and redirected to the legitimate Amazon website.

And this is the moment when some of the victims who have failed to notice that the previous site didn't have the correct URL may become suspicious, because they might notice they are not logged in.

If you are one of them, be sure to immediately change your account password and to contact your credit card issuer to notify them that your credit card has been compromised and should be blocked.









Spotlight

Patching: The least understood line of defense

Posted on 29 August 2014.  |  How many end users, indeed how many IT pros, truly get patching? Sure, many of us see Windows install updates when we shut down our PC and think all is well. Itís not.


Weekly newsletter

Reading our newsletter every Monday will keep you up-to-date with security news.
  



Daily digest

Receive a daily digest of the latest security news.
  

DON'T
MISS

Tue, Sep 2nd
    COPYRIGHT 1998-2014 BY HELP NET SECURITY.   // READ OUR PRIVACY POLICY // ABOUT US // ADVERTISE //