amazon-email-phishing-attempt
Before clicking any buttons and links from your email messages, you should first check the real sender and also the links behind buttons, images and other texts.

In this article we will cover an example of scam phishing attemp that targets Amazon customers.

Amazon.com, Inc. is an American multinational technology company which focuses on e-commerce, cloud computing, digital streaming, and artificial intelligence. It is one of the Big Five companies in the U.S. information technology industry, along with Google, Apple, Meta, and Microsoft.

The email title is called: “Account Locked” and the email body text contains:

Hi [email protected],

𝖢𝖾 𝗁𝖺𝗏𝖾 π—…π—ˆπ–Όπ—„π–Ύπ–½ π—’π—ˆπ—Žπ—‹ π– π—†π–Ίπ—“π—ˆπ—‡ π–Ίπ–Όπ–Όπ—ˆπ—Žπ—‡π— 𝖺𝗇𝖽 𝖺𝗅𝗅 𝗉𝖾𝗇𝖽𝗂𝗇𝗀 π—ˆπ—‹π–½π–Ύπ—‹π—Œ.

𝖢𝖾 𝗁𝖺𝗏𝖾 𝗍𝖺𝗄𝖾𝗇 π—π—π—‚π—Œ π–Ίπ–Όπ—π—‚π—ˆπ—‡ π–»π–Ύπ–Όπ–Ίπ—Žπ—Œπ–Ύ 𝗍𝗁𝖾 𝖻𝗂𝗅𝗅𝗂𝗇𝗀 π—‚π—‡π–Ώπ—ˆπ—‹π—†π–Ίπ—π—‚π—ˆπ—‡ π—’π—ˆπ—Ž π—‰π—‹π—ˆπ—π—‚π–½π–Ύπ–½ π–½π—ˆπ–Ύπ—Œ π—‡π—ˆπ— 𝗆𝖺𝗍𝖼𝗁 𝗍𝗁𝖾 π—‚π—‡π–Ώπ—ˆπ—‹π—†π–Ίπ—π—‚π—ˆπ—‡ π—ˆπ—‡ 𝖿𝗂𝗅𝖾 𝗐𝗂𝗍𝗁 𝗍𝗁𝖾 𝖼𝖺𝗋𝖽 π—‚π—Œπ—Œπ—Žπ–Ύπ—‹.

π–³π—ˆ π—‹π–Ύπ—Œπ—ˆπ—…π—π–Ύ π—π—π—‚π—Œ π—‚π—Œπ—Œπ—Žπ–Ύ, π—‰π—…π–Ύπ–Ίπ—Œπ–Ύ 𝗏𝖾𝗋𝗂𝖿𝗒 π—‡π—ˆπ— 𝗐𝗂𝗍𝗁 𝗍𝗁𝖾 𝖻𝗂𝗅𝗅𝗂𝗇𝗀 𝗇𝖺𝗆𝖾, π–Ίπ–½π–½π—‹π–Ύπ—Œπ—Œ, 𝖺𝗇𝖽 π—‰π—π—ˆπ—‡π–Ύ π—‡π—Žπ—†π–»π–Ύπ—‹ π—Œπ—π—ˆπ—‹π–Ύπ–½ π—ˆπ—‡ π—’π—ˆπ—Žπ—‹ 𝖼𝗋𝖾𝖽𝗂𝗍 𝖼𝖺𝗋𝖽. 𝗂𝖿 π—’π—ˆπ—Ž 𝗁𝖺𝗏𝖾 𝗋𝖾𝖼𝖾𝗇𝗍𝗅𝗒 π—†π—ˆπ—π–Ύπ–½, π—’π—ˆπ—Ž 𝗆𝖺𝗒 𝗇𝖾𝖾𝖽 π—π—ˆ π—Žπ—‰π–½π–Ίπ—π–Ύ π—π—π—‚π—Œ π—‚π—‡π–Ώπ—ˆπ—‹π—†π–Ίπ—π—‚π—ˆπ—‡ 𝗐𝗂𝗍𝗁 𝗍𝗁𝖾 𝖼𝖺𝗋𝖽 π—‚π—Œπ—Œπ—Žπ–Ύπ—‹.

Check Now

How you should know that this email is a scam?

1) The sender appears as: “[email protected]” but the real email address is visible: [email protected]

2) The “Check Now” button redirects to: https://me2.do/FGhni35c?=XcAJtyFHAUB2mlI , a spammy looking link that probably is an Amazon website clone, a login form clone that asks for your credentials.

Phishing is a type of social engineering where an attacker sends a fraudulent message designed to trick a human victim into revealing sensitive information to the attacker or to deploy malicious software on the victim’s infrastructure like ransomware.

Usenet convention defines spamming as excessive multiple posting, that is, the repeated posting of a message (or substantially similar messages).

PROTECTUMUS is a Website Security & Performance provider that combines AI and Machine Learning to detect attacks, protect against malware and recover in case of being hacked.

Protectumus provides a Free Website Security Check scanner that also verifies if an IP, a web, desktop or mobile app is marked as a spammer – Spam Health Check.