Cybercriminals are sending fake renewal emails with malicious links, leading to a fraudulent login page to steal your information.
Thousands of shoppers worldwide pay for an Amazon Prime membership to access special deals and fast shipping. Cybercriminals know this and attempt to use this to their advantage. In this week’s scam, you receive an email alerting you that your Prime membership will soon expire. A link in the email directs you to a PDF file.
If you open the PDF file, you will be redirected to what looks like an Amazon login page. Even though the login page looks genuine, it’s actually fake and controlled by cybercriminals. If you enter your login information, the page asks for more sensitive data, such as your home address and credit card information. If you enter your personal information and credit card number, your Amazon Prime membership won’t be renewed. Instead, cybercriminals will have stolen your login and financial information!
Follow these tips to avoid falling victim to an Amazon Prime phishing scam:
- You should always be cautious when opening an attachment, especially if the email is unexpected.
- If you’re concerned that your Amazon Prime membership has expired, go directly to Amazon’s official website or mobile app to check its status.
- Be suspicious of emails that create a sense of urgency or request sensitive information. If you’re unsure an email is legitimate, contact Amazon directly through their official website or customer service number.
Stop, Look, and Think. Don’t be fooled.
KnowBe4 is the world’s most popular integrated platform for awareness training combined with simulated phishing attacks. Let Keller Schroeder show you how KnowBe4 has helped thousands of organizations just like yours manage the continuing problem of social engineering. Contact us today to learn more.
DISCLAIMER : Any non-technical views expressed are not necessarily those of Keller Schroeder or its employee-owners.
