Amazon has long been a target for scammers attempting to use the online retailer’s name for phishing scams in hopes of luring users to hand over personal information that can be used to empty bank accounts or steal identities.
The latest scam involving Amazon’s name comes in form of an official-looking email purporting to be from amazon.com. With the subject line of the email being “your amazon.com order,” the body of the message includes text thanking recipients for the order and providing them with a link to view and edit orders online. But instead of an actual link to Amazon, the email contains a java-based Trojan virus.
Consumers who use Amazon should be suspicious if they receive similar emails for orders they have not made, or orders with the wrong price. Another way of finding out whether it is an fraudulent email is to hover the mouse over the link.
To help consumers determine whether an email is legitimate and sent from Amazon, the company has outlined guidelines on its site. But in short: When it comes to online communication, neither Amazon.com nor its merchants send order confirmations or other unsolicited requests requiring recipients to open attachments.
If you receive a suspicious email allegedly sent from Amazon.com containing an attachment, the company recommends forwarding it as an attachment to email@example.com without opening it.