My Cup Runneth Over With Amazon Phish
During the nearly 8 years we’ve been doing this work, we’ve never seen such a deluge of phish targeting Amazon customers! Last week we had reported on a woman who received 11 phone calls within 2 hours from 8 different phone numbers, all informing her that there was a fraudulent charge against her Amazon account. The voicemail message asked her to press 1 to speak to an Amazon customer service representative. Last week, one of our relatives received about 14 phone calls during a 2 day period, all telling her that there was a problem with her Amazon account, or there was a $700 fraudulent charge against it. She was asked to press 1 to speak with an Amazon Customer Care representative. Here are just a few of the phone numbers the scammers used:
It seems the Indian scammers are now using phone calls like short burst machine guns to scare victims into returning their calls. Doug happened to be there when one of the calls came through and he quickly started a recording and pressed 1. A man with an Indian accent, who is barely understandable, answered. You can also hear in the background a boiler room of other scam callers when the fellow stops talking.
Click to listen:
The scammer wanted Doug to open a web browser, visit the website AnyDesk.com to download and install their software. Had he done so, the AnyDesk software would have used to give the scammer access AND COMPLETE CONTROL over Doug’s computer! That is extremely dangerous, as you can imagine. After a short conversation though, the scammer knew we were just baiting him and he hung up. It is NEVER OK to download and install software to give someone else complete access/control of your computer UNLESS you have 100% trust and faith in the individual. Certainly not something to provide a stranger!
But also last week, many TDS readers sent us Amazon phish that landed into their inboxes, including our Super Skilled Scam-Baiter friend, Rob L. He received the scam email message below “from Amazon Order Confirmation” about a $912 laptop charged to his account. He was invited to cancel this charge by calling the scammers at 888-200-1235 and he promptly did! (Many others have reported this phone number as an Amazon scam caller on 800Notes.com.) Rob said the scammer answered as “Amazon Customer Service representative.” He told them the order ID from the email and said it's not his order. They informed him that this purchase activity was from Texas, and he played a stellar acting performance as he told them he doesn’t live there and it wasn’t his charge.
In response to all of this, the scammer told Rob that they needed to take over his computer using a program called Teamviewer. Rob is a professional scam-baiter and he has an old computer set up with fake credit cards, phony IDs and a bunch of fake passwords on that computer’s desktop. He was playing dumb and was just about the allow the scammers access to his computer-bait when he suddenly got an important personal call and had to hang up on the scammer. The scammer got lucky and lived to scam another day!
Look carefully and you’ll see that Rob’s email came from a generic Gmail account called “deliveryamzship” instead of Amazon.com. (Notice that this email doesn’t even address the recipient by name, or tell you what model of Samsung laptop.)
Similarly, this email, coming from another generic Gmail account, tells the “Valued Customer” that her order has been placed for $589.21 by “Your Checking Account.” (That’s not how checking accounts work.) Again, a bogus scammer phone number is provided to “stop the order.” But look how the scammers broke up their phone number so that it can’t easily be searched in a search engine look Google!
And then we have the usual clickbait emails like this one from re-methodspayments101[.]com (instead of from Amazon.com) to say that your Amazon account is on hold. To verify your account, all you have to do is click a link to a phishing page on a Google drive document.
And then another longtime TDS Reader sent us an email telling her that her Amazon Prime account was set to renew, but her billing information was no longer valid. The email contained an attached pdf file with a phishing link embedded in the pdf file. (See the screenshot below.) Amazon will NEVER send an attached file containing a link to sign into your Amazon account!
And so when we said “my cup runneth over” we weren’t kidding! It was overflowing with Amazon phish!
Daily Scam Home Page