Phishing for Amazon Users

We have noticed two frequent types of spam-phishing attacks targeting Amazon users. These messages at first appear to be legitimate, and the fake Amazon links end in a format such as this: <domain /index.php?pid=14>. Every link in the email goes to the same malicious page.
One of these emails appears to be an order confirmation from amazon.com for the purchase of a low-priced consumer item: “The charge for this order will appear on your credit card statement.” Most unsuspecting users will naturally be concerned, and the fraudsters offer multiple links in the email for consumers to click: “You can review your order in your online account,” or “Did you know you can view and edit your orders online, 24 hours a day? Visit your account.” After clicking any of these links, victims will be redirected to malicious pages. (It’s always safer to manually type a web address instead of clicking a link in an email.)

The second attack informs users that their email addresses have changed, and they must verify the new ones. “Please verify your new e-mail address–Click on the link below.” Definitely, don’t do this. It may not be easy to visually identify a real website using this type of form.

Amazon’s safety and security page tells us “Amazon.com will never e-mail or call a customer and ask that (continue reading...)