A new phishing scam is reportedly targeting users of the paid service through a very official-looking email. Victims receive an email thanking them for their recent purchase on Amazon Prime Day and inviting them to write a review in exchange for a $50 "bonus."
When consumers click on the link, it takes them to a spoofed Amazon site that requests their log in credentials. She warns consumers NOT to click on the provided links as they may lead to a malware infection on your computer or ransomware that can encrypt sensitive files on your device.
According to Amazon, suspicious emails and/or webpages claiming to be from them often contain:
• An order confirmation for an item you didn't purchase or an attachment to an order confirmation.
• Requests for your Amazon.com username and/or password, or other personal information
• Requests to update payment information.
• Links to websites that look like Amazon.com.
• Attachments or prompts to install software on your computer.
• Typos or grammatical errors.
• Forged e-mail addresses to make it look like the e-mail is coming from Amazon.com. Note: If the "from" line of the e-mail contains an Internet Service Provider (ISP) other than @amazon.com, then it's a fraudulent e-mail.
If you've received one of these spam emails, do not click on it. You should immediately check your information on the Amazon Payment website, and then contact them at stop-spoofing@amazon.com with information about the email you received. Of course, you should delete the email immediately after notifying Amazon.