Security researchers have warned of a sharp increase in fraud and identity theft campaigns targeting buyers before Amazon Prime Day 2022which starts on July 12.
Latest data from security firm Check Point shows that the volume of Amazon-related phishing emails rose 37% month-on-month, with further increases likely as the month approaches. event.
The company’s threat intelligence team also identified 1,900 new areas related in some respects to the e-commerce giant, of which at least 9.5% were deemed “risky”.
Amazon Prime Day Scams
Amazon Prime Day is one of the biggest events of the year for online shoppers, perhaps second only to Black Friday and Cyber Monday weekends.
Inevitably, an event of this magnitude attracts the attention of all manner of cybercriminals, who seek to capitalize on the bargain-hunting to trick victims into exposing their Passwordspersonal data and credit card details.
In one example provided by Check Point researchers, the scammers posed as a member of Amazon’s customer support team, supposedly contacted to notify the victim of a canceled order.
The message prompted the person to open an email attachment, disguised as an invoice, but actually containing a dropper malware able to set the stage for a number of secondary attacks.
In another email campaign, recipients were asked to update their Amazon payment information. The link provided led to a page that looks a lot like the legitimate Amazon website, but is designed to harvest all the information entered by the victim.
The advice for shoppers hoping to avoid these types of scams on Amazon Prime Day is to protect their devices with the main anti-virus software and to pay close attention to oddities in the emails they receive (e.g. spelling and grammatical errors, abnormal sender address, etc.) that could indicate a scam.
Another reasonable precaution would be to navigate directly to known Amazon domains when making purchases, changing accounts, etc., even if an email message seems completely legitimate.