Watch out for this new Amazon Password Reset Phishing Scam.
“Someone tried to reset your password from Dayton, Ohio, if you have not requested this code
Please Call Us on 1-800-462-0049.
And Please provide this code and your email address to verify your identity
Whatever you do, don’t respond to this email! Delete it!
If you receive an email claiming to be from Amazon regarding someone trying to reset your password, take a closer look, it’s not from Amazon. Delete it now and don’t call the phone number.
This Amazon password reset scam almost looks like a real email from Amazon at first glance; but it’s not! This email only uses Amazon’s logo impersonating the company. They also claim to provide you with a six-digit number to verify your identity. (this is a bogus number.) Do NOT call the phone number.
Suspicious emails that are actually NOT from Amazon often have these characteristics:
- Links to websites that look like amazon.com, but it’s fake. Always go to: https://www.amazon.com/ Notice the “S” in the “https” means the site is secure and encrypted.
- Attachments or instructions to install software on your computer.
- Requests for you to update your password.
- Typos or grammatical errors.
- Forged email addresses that make it look like the email is from Amazon.com .
- An order confirmation for items you didn’t order. May also include attachments. You can always login to your amazon account to see items you recently purchased.
- Requests to update your payment options such as credit card number/ expiration.
- Requests to update your username.
Here’s a screenshot of the Amazon phish email:
The verbiage seems like something you’d expect to see from a typical security alert email until you see the phone number and phrase “Please call us on…” Who talks like that? Who says “call us on…”
Caution: Have You Received Unexpected Text Msgs with Google Verification Codes?
Anyone that thinks this email is convincing should take a second guess by Googling the phone number “1-800-462-0049.” You will see it leads to scam results of many people reporting suspicious activity.
The spoofed email even mentions an account security disclosure, warning you to never click on suspicious email links and to report them to Amazon for investigation. The actor behind this email is trying to make this email appear legitimate. In addition, if you have taken our free Quiz: Can you Spot a Phishing Email? You’d know all the signs to look for to verify if an email is a phishing email.
However, it has been reported that people have actually called this number: 1-800-462-0049 and their call was answered by someone with a thick Indian accent. Next, they were directed to visit a web site in order to input more information. (This should be the red flag that makes you hang up) Do not supply your personal information to the website. This is an example of email phishing.
How to Activate your ESET Renewal
Do not fall for this new Amazon Password Reset Phishing Scam.
Here’s where Amazon says to report suspicious Emails:
Amazon takes phishing and spoofing attempts on their customers very seriously. If you receive an email that you think may not be from Amazon, report it to Amazon by sending the e-mail or web page to: [email protected]
What to do if you fell victim to this Amazon Phishing Scam:
First, log-in to your Amazon account immediately and change your password before the cyber criminal changes you password. Second, change all your passwords immediately if you entered your personal information on the spammer’s website. Finally, contact your bank and let them know your situation.
Here is the official Amazon customer support phone number: 1 (888) 280-4331
And here’s the Amazon customer help page (log-in first) https://www.amazon.com/gp/help/customer/contact-us