Problem case of phishing: what used to be cheaply translated, poorly graphically supported and sometimes technically poor, now appears very convincing.
Just like this current email, which is sophisticated down to the last detail. Apart from a few comma weaknesses, there are no major errors in this email. This email is supposedly information that someone else (in this email an alleged Vlatko from Offenbach) has placed an order using their own Amazon data.
Wording of the introduction:
Dear Amazon customer,
Due to the system we developed to detect attempted fraud, which, among other things, compares the location of the payment processes, it was not possible for us to clearly assign this process to your actions.
When we last checked your account, we noticed unusual activity regarding your stored payment methods and your payment behavior.
Please confirm the information you have provided so that you can use your account to its full extent again.
Wrong sender, wrong warning, wrong link
Fake: the supposed sending address “ [email protected] ”. The lack of, but well done, direct salutation also seems suspicious. The reference to the high amount of an order allegedly placed by a stranger via one's own account is intended to create fear.
There is a link in the email that should be used to clarify this supposed problem.
The phishing form
If you follow the prompt, you will end up on a replica login form that is deceptively similar to the Amazon login.
At this point, the phishers directly access their victims' Amazon data. Little info: all links on this page lead back to this page. Only the “Continue” button leads to the next form.
Anyone who has filled out the form truthfully and has arrived at the following form has already provided the phishers with important data .
This form actually asks for everything the fraudster wants.
HANDS OFF! Under no circumstances should you fill it out truthfully!
Here, too, a small detail for your information: some fields are subject to a logical check. For example, if you enter a number in the credit card field that does not correspond to the standard, you will receive a message.
If you have now sent your data, you will still appear to be on a legitimate Amazon site because there will be positive feedback.
Again: Phishing and its characteristics
Phishing emails try to unsettle people. They contain warnings or messages that are incorrect and always provide a link or attachment that requests data. Phishing emails rarely (if ever) address the recipient directly.
The link on the subsequent form always has a strangely constructed name or is shortened. In this case
Real companies never ask you to log in via a link in an email, especially not on an unsecured site. If you are unsure about the content of such an email, you should always log in directly, i.e. go to the provider's website manually (type it in).
Author: Andre, mimikama.org
Notes:
1) This content reflects the current state of affairs at the time of publication. The reproduction of individual images, screenshots, embeds or video sequences serves to discuss the topic. 2) Individual contributions were created through the use of machine assistance and were carefully checked by the Mimikama editorial team before publication. ( Reason )