Consumer Fraud Reporting
Amazon.com
Reporting on the Latest Frauds, Scams, Fake Lotteries, Spams and Hoaxes

Home Email this page GovernmentAgencies Recognize a scam Report a Scam If you are scammed Your wallet is stolen? Prevent scams Free Publications Recommended Feedback to CFR Glossary Search Credit Card Rights Bookmark and Share
 

Up

Recommended:
books


Recommended
AV product:

Phishing - The Amazon.com Email Scam
Redirects to spoofed (Fake) website: http://citdsl.fix.netvision.net.il/login.html

You may have received an email like one of the samples below that looks very authentic, like they came from Amazon.com. These emails were not sent by Amazon.com; Amazon.com is a victim as well. If you receive an email similar to the one below, DO NOT click on the link, and do not enter any information on the forms there.

The website that the link leads to is a spoof; a fake website, not created by Amazon.com. It goes to http://citdsl.fix.netvision.net.il/login.html, not Amazon.com! When you enter the information they ask for, you will simply be handing the thieves the keys to your bank accounts.  That is how spoofing and phishing works.

Remember, no reputable business would send you an email requesting your personal account information. Any such email you receive asking for this information should be considered phony and brought to the attention of the business being 'phished'.

Anytime you need to go to a website for your bank, credit card companies or other personal, financial or confidential information; do not follow a link in an email; just type their address in your browser directly (such as www.Amazon.com.com )

Below are actual phishing emails that started circulating in early 2007. We have put a warning over the links to the phisher's website.


Dear Amazon® member,

We are contacting you to inform you that our Account Review Team identified some unusual activity in your account. In accordance with Amazon's User Agreement and to ensure that your account has not been compromised, access to your account was limited. Your account access will remain limited until this issue has been resolved. To secure your account and quickly restore full access, we may require some additional information from you for the following reason: We have been notified that a card associated with your account has been reported as lost or stolen, or that there were additional problems with your card.

This process is mandatory, and if not completed within the nearest time your account or credit card may be subject for temporary suspension. To securely confirm your Amazon information please click on the link bellow:

http://citdsl.fix.netvision.net.il/login.html

We encourage you to log in and perform the steps necessary to restore your account access as soon as possible. Allowing your account access to remain limited for an extended period of time may result in further limitations on the use of your account and possible account closure.

For more information about how to protect your account please visit Amazon Security Center. We apologize for any incovenience this may cause, and we apriciate your assistance in helping us to maintain the integrity of the entire Amazon system.

Thank you for using Amazon!

The Amazon Team

Privacy Notice © 1995-2007, Amazon.com, Inc. or its affiliates.


Another scam email:

Date: January 30, 2007 12:14:34 PM EST

To:

Subject: Maintaining the trust of our customers !!!

Reply-To: Amazon.com

Dear Customer,

- Due to recent account takeovers and unauthorized listings, Amazon is requesting a new account verification procedure. From time to time, randomly selected accounts (seller and/or buyer) are placed under an advanced updating process based on merchant accounts/bank relations and on-file credit cards. Amazon may also request in an e- mail message scanned/faxed copies of one or more photo ID's. Your account confirmation may go wrong if your credit card/bank account has expired, or if you have changed/replaced your credit card without letting us know about the change.

Your account is not suspended, but if in 36 hours after you receive this message your account is not confirmed we reserve the right to terminate your Amazon subscription.

If you received this notice and you are not an authorized Amazon account holder, please be aware that it is in violation of Amazon policy to represent oneself as an Amazon user. Such action may also be in violation of local, national, and/or international law.

To confirm your identity with us click HERE

We apologize in advance for any inconvenience this may cause you and we would like to thank you for your cooperation as we review this matter.

Respectfully,

Amazon.com, Inc.

Copyright 2007 Amazon.com, Inc. All rights reserved.

Amazon sent this e-mail to you because your Notification Preferences indicate that you want to receive information about Special Events & Promotions. Amazon will request personal data (password, credit card/bank numbers) only on our home site, which is securely incrypted [sic] with SLL.
 

 

 


 

For more information about phishing, see this page.
 


Copyright CFR 2005, 2006, 2007, 2008, 2009  - Definition of scam, fraud, etc.Legal disclaimer / corrections / complaints  -  Privacy Policy
Names used by scammers in the examples on this page and others often belong to real people and businesses who often have no knowledge of nor connection to the scammer's use of their name and information.  Sample scam emails and other documents are copies of the scam to help potential victims recognize and avoid it.  You should presume that any names used and presented here in a scam are either fictitious or used without their legitimate owner's permission.
Email us at: