General Discussion
Related: Editorials & Other Articles, Issue Forums, Alliance Forums, Region ForumsHeads up on this phishing e-mail I got from "Amazon"
I got this e-mail today telling me that I needed to "update my credit card because it expired and my Prime account was in jeopardy". It looked absolutely legit. Of course, it wanted me to **click the link** to update my credit card info. HA! I went on Amazon's website, and there was NOTHING wrong with my account, so I reported it to: stop-spoofing@amazon.com. It's a scam a minute out there. Be careful, my friends.
hlthe2b
(102,297 posts)on Amazon itself. I know because my credit card expiration date needed to be updated when I got my new card. It also pops up when you try to buy something (obviously). They definitely DON'T email you with a link to update.
Iggo
(47,558 posts)Til then, why would they even care?
TheBlackAdder
(28,209 posts).
You get the expanded information on the email, and it will show you the sender IP address.
Open a DOS or command window and type in: nslookup xxx.xxx.xxx.xxx
This will show you the domain name of the sender. Most new spam originates from Amazon.
.
Cal Carpenter
(4,959 posts)last I checked. So a huge amount of email providers, web hosts, etc are via AWS.
There's no fucking avoiding them. As a small retail business owner watching Amazon stick its hand in more and more industries and creating vertical monopoly (not just selling, but branding and manufacturing and content creation and food and shipping and....) I can only hope that it somehow implodes. Because it's not like anyone is enforcing anti-trust regulations this century.
Raven
(13,893 posts)marble falls
(57,112 posts)its a scam or not.
Different Drummer
(7,621 posts)If the two-letter code for a foreign country is part of the sender's address, it's very likely a scam.
samnsara
(17,622 posts)dflprincess
(28,079 posts)I never click the link in the email, I go out to the bank's (or whoever's) site and check my account.
Wounded Bear
(58,670 posts)welcome to spamalot if you click on that.
marble falls
(57,112 posts)CloudWatcher
(1,850 posts)The email "From" and "Sender" are easily forged. I get fake email from my own email address all the time. Decades ago I demo'd this by sending my boss an email from his boss firing him (um, he was watching as I did it ... it was a demo).
Two suggestions:
1) Never click on links in email. Use your own bookmarks and go to the website. The only
exception is for two-stage authentication emails where you're confirming that you own the
email address and are expecting it.
2) If you want to see where it came from, use your email viewer to look at all the headers and try
and figure out the path used to send the email by the data recorded in the "Received" headers.
This can be useful, but is not for the faint-of-heart (or poor of eyesight). But even if the email was
sent from a normal email server, it doesn't mean it's legit.
Clash City Rocker
(3,396 posts)That way, you cant block the phone number.
Vogon_Glory
(9,119 posts)Not only are foreign e-mail addresses red flags. But so are a lot of the innocuous-sounding dot com addresses.
Totally Tunsie
(10,885 posts)bucolic_frolic
(43,190 posts)they never match anything from the supposed sending company. I've gotten these for 20 years. Don't know how anyone could get taken in on them, they are so transparent.
TruckFump
(5,812 posts)So, of course, I like you went to Amazon and checked. All was fine.
Wounded Bear
(58,670 posts)always check the return address, as has been said in replies above.
I especially love the notices to 'Unsubscribe' from sites and services I've never heard of.
It's a dangerous world out there.
wnylib
(21,493 posts)getting scam messages on my phone.
First was a message about something wrong with my SS account. Ssid 'they' had bern trying to reach me about an irregularity with my SS account. If I did not get back to them, they would assume it was fraud and would prosecute. I had just checked my online account the day before because I got an email from SS to say I had a new message. The message was a letter about the cost of living raise.
I called SS to ask about the fraud threat. They said it was a current scam and to ignore it, but checked my account to verify that it was ok, no problems.
2 days later and almost every day since, I get recorded messages that are not complete. Sounds like the first part is cut off, as if the message started playing before the voice mail could start recording. It instructs me to press a number if I want my refund.
I did not work last year, so I have no IRS refund due. Noting else I would get a refund from. Checked online about refund scams. Found something about IRS scams. Not sure quite how it works. Something about false returns filed in someone's name and offers to help collect the refund. Scary part about that is how could anyone file a return without a SS number? Now I'm worried that my tax preparer's system was hacked.
lastlib
(23,250 posts)I'm wise enough to know that the real "Social Security Administration" ISN"T a "Department," ergo, doesn't have the word "Department" in its name. So I played with the caller: "THE Department of Social Security Administration?? From the GOVernment?" (If he says "yes," he has committed a fraud!) He just repeated the name. "You're the folks who collect my FICA taxes? Hey, I've been wanting to call you guys!" Then I went on about how I was trying to fix something that related to my FICA account. He asked for my SSN, and I gave him a number that I knew from my tax experience would not be a valid SSN. Then I asked him for his name, first and last, which he naturally wouldn't give me. I asked him for his company name; when he gave me the "Department Of" BS, I again asked if he was from the government. This time he slipped up and said he was. So I informed him that he had just committed a fraud, and he hung up.
Wounded Bear
(58,670 posts)wnylib
(21,493 posts)I don't answer for numbers that I or my phone don't recognize. I can call back if they leave a message. But these messages are cut off at the start with no introductory message. No name or agency identification. Just instructions to press a number if I want my refund. What kind of message is that? Pressing a number on a message would not get me to any extension on a message.
Maybe that's the point, to make me curious enough to answer when they call.
Haggis for Breakfast
(6,831 posts)Hahahahahahahahaha. I've never stored anything in the cloud.
AllyCat
(16,192 posts)Iggo
(47,558 posts)Went to the real Apple website and same as you, found nothing.
I still changed my password, though. 😂
Bev54
(10,053 posts)from Amazon and from almost every "phone" and "cable" provider and monthly from Netflix, all saying my payment did not go through and I need to update my credit card information. I ignore them all, if I am really behind someone will call me. You can usually tell by their email address.
cwydro
(51,308 posts)You must be on some list somewhere. Yikes.
Jamastiene
(38,187 posts)I have had to be in constant contact with my bank because of so many of those types of messages. I am glad you warned about this on here. It is a big help to know what to look out for.
jg10003
(976 posts)NEVER CLICK ON A LINK IN AN EMAIL - THERE ARE NO EXCEPTIONS.
The email may look completely real.
The sending address may look totally legitimate.
The email may contain personal information that will make you believe it's real (e.g. mother's maiden name, your social security number, your credit card number, etc.).
It doesn't matter - do not click it. Go the site of the alleged bank, electric company, cable company, cell phone company, or whatever, and login. if you do not know the company's site then Google it. Do not use the site address given in the email.
Do this even if you are 100 percent certain the email is legitimate.
Tracer
(2,769 posts)I'm super careful about emails from people/companies that I don't know and ALWAYS look at the address they are coming from.
But occasionally I will accidentally open up the email. Does doing this trigger anything awful other than just more emails from that person/company?
Thanks in advance.
jg10003
(976 posts)or window. also don't download any attached files. Btw, this applies to all emails, even those from family and friends.
samnsara
(17,622 posts)..the site first. "Paypal" also sends these out.
The one i nearly fell for was from "Medicare" wanting info. so they could send out a back brace. At the time I was caring for my elderly parents and that call came at the exact time I was looking for info about their medicare...and mom was needing a brace. When they asked for moms SS# I asked if I could get the info and call them back. Nope they needed it now. Not only did it send a red flag it pissed me off too. So I hung up and blocked their number.
Clash City Rocker
(3,396 posts)Any email that claims to be from a company or business entity that gives some ominous warning and asks you to click here to fix it is either trying to give you malware or is about to ask for a credit card number or social security number for illicit purposes. Legitimate companies dont work that way.
Response to Trailrider1951 (Original post)
Name removed Message auto-removed