While many people find it convenient to shop online, especially during the holidays, it is important to be aware that everything is not always as it seems.
Manitoba RCMP are aware of a scam targeting Amazon subscribers. An order confirmation email arrives to the intended victim advising what was purchased, where the order will be sent, the total cost of the purchase, as well as a clickable button for order details. The common reaction is that the intended victim immediately identifies that they did not place this order – the mailing address is often incorrect as well – so they click on the order details button.
The screen that comes up is what appears to be the Amazon login page where asked for an email and password. However, if one looks at the URL (the website address) in the navigation bar, they can see that this is most certainly not an Amazon page. If a prospective shopper is to login on this page, the individuals who sent the email will have access to the Amazon login information and can then access the account, where credit card information is often stored, as well as personal identifiers, such as addresses and phone numbers.
If someone receive such an email, do not provide login information. The only time someone should login to an account is when directly navigated to those login pages yourself and can confirm the URL. Report the email to the Canadian Anti-Fraud Centre either online or by phone.
If anyone has logged in after clicking said link contact Amazon immediately. If credit card information is stored in the account, contact the financial institution immediately to begin to take precautions to protect access to the credit card.
Clues to watch out for that indicate an email is not what it appears:
· Link to a suspicious URL
· An unrecognizable email address from the sender (if you are on a mobile device, you will often have to actually click on the sender to see the entire email address come up)
· Spelling mistakes
· Odd spaces and dashes