Next week, thousands of eager shoppers will flock to Amazon’s website in the hopes of bagging themselves a Prime Day deal.
Worryingly, a new study has revealed that hackers are targeting these unsuspecting shoppers with a new phishing scam.
The scam was discovered by researchers from McAfee, who have dubbed it ‘16Shop.’
While an early version of the scam targeted Apple account holders, it seems that the hackers have now turned their attention to Amazon shoppers.
Typically, victims receive an email claiming that ‘someone’ has accessed their Amazon account and made changes.
The email contains a PDF, which the victims are urged to download and click a link in.
When the victims click on the link, they’re redirected to a phishing site, where they are then tricked into updating their account information.
Worryingly, this information includes their name, email address and credit card details.
Oliver Devane, Senior Security Researcher at McAfee explained: “We recommend that if users want to check any account changes on Amazon, which they received via email or other sources, that they go to Amazon.com directly and navigate from there rather than following suspicious links.”
How to spot scam emails
There are several signs to look out for to help spot scam emails. If you spot any of these signs, report and bin the message:
– The sender’s address doesn’t match the website address of the organisation it says it’s from. Roll your mouse pointer over the sender’s name to reveal its true address.
– The email doesn’t use your correct name – instead using something like “Dear customer”.
– There’s a sense of urgency, asking you to act immediately.
– There’s a prominent website link which may seem like the proper address, but with one character different.
– There’s a request for personal information.
– There are spelling and grammatical errors.
– The entire text of the email is within an image rather than the usual text format and the image contains an embedded link to a bogus site. Again roll your mouse pointer over the link to reveal its true destination.