(BBB news release) Online shoppers beware.
According to a news release from the BBB, the latest email phishing scam looks just like an order cancellation notice from Amazon.com. Be sure to double check suspicious emails you receive from the online retailer before clicking on any links.
About the scam:
This scam email comes from an Amazon.com email address, such as firstname.lastname@example.org, and contains the subject line "Your Cancellation" and an order number. The email body tells the recipient that "your order has been successfully canceled" and provides a summary of the order.
What to do:
Amazon.com cautions email recipients to delete any cancellation notice with an eight digit order number. However, just because your email has a longer order ID number doesn't mean that's real.
To double check your email, be sure to hover over the links to verify their destination. Amazon emails only link to sites that begin with "http://"something".amazon.com." (Note the period before "amazon.com.") Sites such as "payments-amazon.com" are not actually Amazon. Amazon also never uses an IP address (a string of numbers seperated by periods) followed by a directory name, such as http://"123.456.789.123"/amazon.com/.
If you want to confirm a cancellation:
Go to Amazon.com by typing www.amazon.com into your web browser. Don't click a link in the e-mail itself.
Click "Your Account" in the upper-right corner.
Visit "Your Orders" and see if an order matches the details for the one in the e-mail.