Amazon phishing – when username and password is just not enough


In the grand phishing universe, it’s clear that Amazon would be a target.  This particular phishing outbreak caught our eye though.  It starts with a typical “account verification” email.   Recipients must submit the required information or they will suffer the dreaded “locked account”.

Opening the attached HTML file reveals phishing for more than just a username and password.  The focus instead is on credit card information – a truly comprehensive request for every last detail – even the ATM PIN.

We hope no one filled it in – but those who did and clicked on “continue” would be lead to the Amazon homepage.  We note the use of an HTML attachment – when opened, the URL reflects a local file as opposed to a suspicious non-Amazon URL.  But then there is that request for the ATM PIN…

Go back