The emails, purporting to be from Amazon customer service, falsely state that a small number of accounts were breached last month. The scammers tell the victims they are required to complete a “verification process” or run the risk of having restrictions placed on their account.
Upon clicking the link to verify their accounts, users are redirected to a page designed to mimic the Amazon UK site. Here victims are instructed to provide login credentials, personal identifiable information, payment card details and security details.
The phony domain was traced back to an email address registered under a popular email provider in China. Some online browsers have already flagged the domain as a threat.
Researchers recommend that anyone who receives the email delete it from their inbox.