Phishing via Amazon fake: "An attempt was made to access your user account"

Once again there is a message from the area of ​​phishing, because I received an email that night that allegedly came from Amazon. The sender name is security center and the subject includes "New Message!", a Ref-No. and my name. But here, too, as with many previous examples, there are clear indications that this is not a real e-mail from Amazon, but phishing, with which fraudsters want to get my data. This time there is also a Cyrillic letter as a guide;)

I received the phishing email on behalf of Amazon on May 19, 2020. They expose typical and obvious errors as frauds intended to steal data.
I received the phishing email on behalf of Amazon on May 19, 2020. They expose typical and obvious errors as frauds intended to steal data.

New message from the Amazon security center? This is phishing!

The first part of the email is as follows (with the recipient's name instead of NAME):

Hello (NAME),
An attempt was made to access your user account. Our security department has set up an unauthorized login in connection with your personal user account.
In the following section you will find all further information:

This is followed by the “information” that there should have been an unknown “login attempt”, when the corresponding time was, where the location should have been (Kaohsiung, China) and which IP should have been used ( I will deal with the logical errors in this list below. The email continues after the info block in the following manner:

If yоuе tо log in, you do not need tо initiate оnе further steps. However, if you not the case when you tried to log in, it is necessary to immediately check your data and activate your account.To begin with the consumer information comparison, please click on the following button:

Start the process

Amazon Phishing Mail: The usual signs are there

At first glance, the email looked ... well, not really real either. She immediately showed her true colors to the trained eye. But before I get to the strange characters that activate the phishing alarm bells directly for me, I would like to go into the general characters of a fraudulent e-mail, which also apply here:

  1. Sender e-mail address: The security cender as the sender name cannot hide as the sender e-mail address
  2. Bad German: An effort was made, but the choice of words, punctuation and other indications indicate a bad translation
  3. Links do not lead to Amazon: NEVER click on links in suspicious emails, just hover over them with the mouse cursor - the button for this email shows "" (whatever that should be)
  4. Other links such as "My Orders", "My Account" and "" also do not lead to the desired pages, but to fraudulent pages
  5. Various details in the email are simply wrong

Letters and other (logical) errors in the Amazon phishing email

This phishing email on behalf of Amazon is something special. Where other scam emails are always more difficult to identify as such (see list below), this example shows how amateurish some scammers still act. Here are a few amusing mistakes that the email immediately exposed to me as total nonsense:

  1. In the subject there is a instead of an E, the symbol for EU Directive 76/211 / EEC for pre-packed goods (see Wikipedia)
  2. In the text, instead of an e, there is a Ҽ, a Cyrillic letter, which is separated from the lowercase E with an Ogonek and is pronounced more like a č (see Wikipedia)
  3. I leave it up to diplomatic interpretation whether one should officially locate Kaohsiung in China - I think one should state Taiwan as the country (see Wikipedia)
  4. The IP address will most likely not have been used for an Amazon login because it is reserved (see Wikipedia)
  5. The Amazon logo and the footer are missing in the email; In addition, the layout is borrowed from a shipping confirmation, only that “order number” has been exchanged for “file number”

As you can see, you don't need to worry about unauthorized access to your Amazon account because of this email. Because she is total nonsense. You can either ignore them and delete them directly (and block the sender) or you can delete them before deleting them report to Amazon.

More articles on phishing and the detection of fake emails


My tips & tricks about technology & Apple

Did you like the article and did the instructions on the blog help you? Then I would be happy if you the blog via a Steady Membership would support.

1 comment on "Phishing via Amazon Fake: "An attempt was made to access your user account""

Post a comment

Your e-mail address will not be published. Required fields are marked with * marked

In the Sir Apfelot Blog you will find advice, instructions and reviews on Apple products such as the iPhone, iPad, Apple Watch, AirPods, iMac, Mac Pro, Mac Mini and Mac Studio.