As the highly anticipated Amazon Prime Day event approaches on July 16-17, 2024, online shoppers are preparing to snag the best deals and exclusive offers. However, amidst the excitement, a shadow of cyber threats looms as cybercriminals are gearing up to deceive and steal from unsuspecting victims.
Researchers from Check Point recently uncovered a disturbing trend of over 1,230 new domains registered in June 2024, with a staggering 85% of these domains marked as malicious or suspicious. These deceptive domains, impersonating legitimate Amazon websites, are designed to trick users into divulging sensitive information such as login credentials, payment details, and personal data.
Phishing tactics have been on the rise, with cybercriminals using various methods to deceive users. Fake domains like amazon-onboarding[.]com, amazonmxc[.]shop, and amazonindo[.]com are examples of the deceptive websites created to lure unsuspecting victims. These domains mimic the trusted Amazon brand to trick users into inputting sensitive information.
Moreover, phishing campaigns distributing malicious files under the guise of urgent alerts about payment failures have become prevalent. Files with misleading names like “Mail-AmazonReports-73074[264].pdf” contain false alerts about account suspension, prompting users to update their payment details through fraudulent links. The urgency created by these messages instills fear in users, compelling them to act quickly to avoid account closure or service termination.
To protect themselves during online shopping, consumers are advised to be vigilant and follow certain precautions. Scrutinizing URLs for misspellings, using strong, unique passwords, and verifying website security with the presence of “https://” and a padlock icon are recommended measures. Avoiding requests for excessive personal information, approaching urgent emails with caution, and trusting instincts about deals that seem too good to be true are also crucial in staying safe during online transactions.
Amazon has been taking proactive measures to address scams and phishing attempts, with over 40,000 phishing websites and 10,000 phone numbers taken down in 2023 alone. The e-commerce giant encourages customers to report scams to a dedicated email address and partners with organizations like the Better Business Bureau, the Anti-Phishing Council in Japan, and Microsoft to combat fraudulent activities.
As Amazon Prime Day draws near, it remains to be seen how the e-commerce giant will tackle potential scams associated with the event. Consumers are urged to remain cautious and report any suspicious activity to help maintain a safe online shopping environment.