Blog

Dissecting the Lessons from a Recent Amazon Scam Warning Email

Dissecting the Lessons from a Recent Amazon Scam Warning Email

Amazon Prime subscribers recently received an email from the online marketplace, warning them of the prevalence of scams that took advantage of their offerings and brand recognition. Let’s go through the advice that this email shared, and compare it to the best practices we recommend for avoiding scams.

What Did Amazon’s Email Have to Say?

As you may expect, this communication primarily focused on those scams that involved Amazon’s brand and services in some way. For instance, it directly referenced “Prime membership scams” and “Account suspension/Deletion scams.”

As the email put it, a Prime membership scam is composed of some communication that references some issue with your membership in the program or some additional fee that is required. In order to confirm or cancel this charge, of course, your payment information is needed.

In regards to these scams, the official statement shared in the company’s email is that “Amazon will never ask you to provide payment information for products or services over the phone.”  Instead, customers are directed to visit the official website/application to check for legitimate communications in the Message Center and manage their account status.

Account suspension/Deletion scams, meanwhile, are described as texts, emails, and phone calls that try to fool users into providing account access by convincing them to hand over their credentials or payment information.

Amazon’s official stance—again, from the aforementioned email—is that “Amazon will never ask you to disclose your password or verify sensitive information over the phone or on any website other than Amazon.com.” Their advice is to authenticate any requests, specifically through the Message Center.

Amazon’s Other Recommended Tips (and Whether We Agree with Them)

Amazon’s alert also outlined a few pieces of advice. To quote the message:

“1. Trust Amazon-owned channels.
Always go through the Amazon mobile app or website when seeking customer service, tech support, or when looking to make changes to your account.

2. Be wary of false urgency.
Scammers may try to create a sense of urgency to persuade you to do what they're asking. Be wary any time someone tries to convince you that you must act now.

3. Never pay over the phone.
Amazon will never ask you to provide payment information, including gift cards (or “verification cards,” as some scammers call them) for products or services over the phone.

4. Verify links first.
Legitimate Amazon websites contain "amazon.com" or "amazon.com/support." Go directly to our website when seeking help with Amazon devices/services, orders or to make changes to your account.”

We Agree with These Measures

Overall, these line up with the best practices we’d recommend when dealing with any official-seeming communication to help prevent phishing:

  • When responding to a message, it is always better to turn to confirmed official channels, separately from that message. Don’t respond to a suspected phishing email directly—manually navigate to the company’s website, find the supposed sender’s contact information there, and reach out that way.
  • Keep an eye out for overly urgent language in the messages you receive. This is a common phishing tactic meant to get you acting first and thinking later. If a message of any kind pushes you to act immediately, it should be seen as a signal that something may not be right.
  • We can’t pretend that all requests for over-the-phone payments are going to be fraudulent, despite the fact that this is the case where Amazon is concerned. However, it is important to keep in mind that a legitimate business will never demand that you pay them in gift cards… particularly those associated with an opposing brand.
  • There are a lot of ways that a scammer can disguise a phishing link, so it is generally best to avoid clicking on any provided links and instead navigate to the legitimate website independently and proceed from there.

Scams Aren’t an Amazon-Specific Problem

Don’t get us wrong, we’re glad to see a business with the reach that Amazon has sharing cybersecurity practices and spreading awareness. However, it is important that these practices are applied to every email you receive at home and especially in the workplace, along with other assorted security measures and safeguards.

White Mountain IT Services is here to assist the businesses of New Hampshire with their information technology needs, including their cybersecurity and related concerns. Give us a call at 603-889-0800 to learn more about what we can do.

Related Posts

Smishing: A Variety of Phishing Attacks Utilizing SMS
Smishing: A Variety of Phishing Attacks Utilizing SMS
We discuss phishing often on this blog, and one method that often flies under the radar is smishing, or phishing that is conducted through SMS messages. Although email phishing is perhaps the most common method of conducting these scams, you should a...
How Good is Consumer Reports’ Scam Prevention Advice?
How Good is Consumer Reports’ Scam Prevention Advice?
Scams are everywhere in our highly digitized world, which makes it especially important that everyone is prepared to deal with them—both personally and professionally. The publication Consumer Reports’ cover feature for its August 2023 edition is ded...
Blank Emails are a Sign of Dangerous Spam
Blank Emails are a Sign of Dangerous Spam
We talk a lot about phishing. What it is, what it does, and perhaps most critically, what it looks like. However, have you ever expected a phishing email to look like… nothing? As in, a completely blank message? If you answered, “no,” that’s exactly ...
Your Business Communications Should Present a Unified Front
Your Business Communications Should Present a Unified Front
A business’ operations are heavily influenced by the quality of its communications. However, the overwhelming number of options that are available today can make it challenging to decide how to invest in your technologies. Let’s talk about how you ca...
Not Even Voicemails are Safe from Phishing
Not Even Voicemails are Safe from Phishing
Phishing attacks have consistently been prominent in cybercrime throughout the past few years, not only due to their efficacy but also because there are so many avenues wherein phishing can be attempted. The first that comes to mind is email, of cour...
How You Can Keep Prying Eyes Off the Emails You Send
How You Can Keep Prying Eyes Off the Emails You Send
Email remains a cornerstone in business communications, often containing sensitive information and other data that really needs to be protected. Fortunately, modern email platforms often enable you to add a little bit of protection, so long as you kn...
Don’t Get Caught Falling for These Sneaky Spam Tricks
Don’t Get Caught Falling for These Sneaky Spam Tricks
I’m talking about when the heir to the Nigerian throne would reach out to your Hotmail account to help him secure his inheritance, or when an attractive woman or man you’ve never met before would email you out of the blue asking if you were single; s...
Tip of the Week: Translating an Email within Gmail
Tip of the Week: Translating an Email within Gmail
How often do you receive emails from someone written in another language? We bet the answer is “not often,” but you never know when being able to translate an email might come in handy—especially if you ever do business overseas. Let’s go over the bu...
Why It’s Important Your Organization Avoids BEC
Why It’s Important Your Organization Avoids BEC
Sometimes the worst scams out there are the simplest ones. Hackers don’t need a fancy or complicated malware or algorithm to create chaos for your organization; all they have to do is convince you that the email you’ve received in your inbox is from ...
What is Social Engineering, and How Can I Stop It?
What is Social Engineering, and How Can I Stop It?
Let me ask you a few questions—first, how confident are you that you could spot an online ruse, and second, did you know there’s a stain on your shirt right now? Did you look? If so, you’ve just fallen for the school playground version of social engi...
Why You Should Boost Your Email Security
Why You Should Boost Your Email Security
Your company’s email is one of its most important pieces of technology, and since that is true for nearly every business, it is unfortunately one of the most utilized attack vectors used by cybercriminals. Most businesses don’t understand just how vu...
While Fun, Those Social Media Quizzes Can be Dangerous
While Fun, Those Social Media Quizzes Can be Dangerous
We’ve all seen our friends and family sharing quizzes on their social media profiles, prompting people to find out what their celebrity stage name or what Hogwarts house you would be in, or to share what their first concert experience was. These fun,...

Onsite Service Coverage Area

Although we provide remote services and support to businesses in over 20 states, onsite services are limited to within reasonable driving distance from our offices in NH.  We will manage a local vendor for locations outside of our service area to provide onsite assistance when needed.

 

Onsite Computer Support Services are available to businesses within 60 miles of Nashua New Hampshire. We have excellent onsite coverage from Concord NH, south through Manchester NH, and then down into Boston. From Northern and Central Mass, we cover from Worcester, east to the North Shore, including the Salem NH and Portsmouth NH area.

White Mountain IT Services

 


33 Main St, Suite 302
Nashua, NH 03064

 


121 Riverfront Drive
Manchester, NH 03102

 

Client Help Desk      603-889-2210

New Client Inquiries   603-889-0800

Open Positions