Hot Take amazon phishing

[simmerskool]

I received 3 text imessages on my iphone today, each with spamy looking url and content of "you ordered this item (unnamed) in May 2025. We are recalling the item due to quality and safety issues...contact us to arrange for a full refund" -- I checked it on VT and it came back 0/97 clean. So very curious I used my Cyberlock Safe Browser (runs in Windows sandbox) to see what happened and it took me to what looks like an amazon sign-in screen. But the URL at the top of this linked page is amazonzdv_dot_co and putting that URL in VT now both Bitdefender and GData report it as phishing. What surprised me was that no vendor flagged the original URL which redirects to this phishing URL.

EDIT the text even has a validly formatted item number, and the fake login looks like a clone of the real amazon login screen. I logged into real amazon on a different computer, and the item number did pull up real items, but of course nothing I had ever ordered. I'd call this a serious attempt at phishing.

 

[KnownStormChaser]

Try reporting it to the registrar and Amazon if you haven’t already

 

[Trident]

I wouldn’t call it a serious attempt at scamming/phishing but a bit more serious than the usual ones which are… despicable.

 

[simmerskool]

I wouldn’t call it a serious attempt at scamming/phishing but a bit more serious than the usual ones which are… despicable.

well it made it look a little deeper than I usually do before I deleted it.

 

[Trident]

well it made it look a little deeper than I usually do before I deleted it.

Amazon doesn’t send text messages upon successful orders, they just send an email.

Any text messages that claim you’ve ordered something are spam/scam.

It can also be easily verified when you look at your order history.

 

[simmerskool]

Amazon doesn’t send text messages upon successful orders, they just send an email.

Any text messages that claim you’ve ordered something is spam/scam.

It can also be easily verified when you look at your order history.

good to know as I am sure that amazon has my phone number, as does this phisher

 

[Trident]

good to know as I am sure that amazon has my phone number, as does this phisher

These phishers often obtain your information from data brokers, not sure if you saw the McAfee personal data cleanup, but it attempts to make brokers “forget you”.

Though often once they get the numbers, they sell and resell them and the only solution (not very optimal in fact) is new number.

Just ignore any messages of this sort, ensure Amazon (I think by default) uses 2FA.

No one can order anything from your account when they can’t log-in.

 

[Zero Knowledge]

Yeah I've seen a uptick in iOS/iPhone phishing which is strange. Had several parcel delivery scams lately. Just remember delivery companies will never text you they email you.

The worst now is disappearing WhatsApp scams/crypto fraud/investment fraud messages. You really need to keep on top of current trends other wise you will fall for one bad scam or two.

 

[simmerskool]

These phishers often obtain your information from data brokers, not sure if you saw the McAfee personal data cleanup, but it attempts to make brokers “forget you”.

Though often once they get the numbers, they sell and resell them and the only solution (not very optimal in fact) is new number.

Just ignore any messages of this sort, ensure Amazon (I think by default) uses 2FA.

No one can order anything from your account when they can’t log-in.

yes agree 100% but was curious (to me) that VirusTotal zero(0) of 97 venders flagged the the original URL as spam/phishing when it redirected to a fake amazon login screen, plus the fact that the spammer used a real amazon product number for anyone taking the time to look it up. Sorta sophisticated (imho)

 

[superleeds27]

Yeah I've seen a uptick in iOS/iPhone phishing which is strange. Had several parcel delivery scams lately. Just remember delivery companies will never text you they email you.

The worst now is disappearing WhatsApp scams/crypto fraud/investment fraud messages. You really need to keep on top of current trends other wise you will fall for one bad scam or two.

To be fair. In the UK some parcel companies do message you about deliveries.

 

[Zero Knowledge]

To be fair. In the UK some parcel companies do message you about deliveries.

Not sure about U.K, but USA most if not all parcel companies do not send messages to your phone about missed deliveries. In this case it's clear because Amazon worldwide never sends SMS, these campaigns don't last long. Spray and pray type operations. They are live for a short time but they must snatch some people otherwise you wouldn't see these smishing campaigns continue.