- 200 million Amazon Prime subscribers received a warning email on scams
- Most attacks have been centered on false price increases
- Social engineering is the best friend of an attacker
With Amazon Prime Day now behind us, Malwarebytes revealed new research showing that the old trends are repeated – each year, we see an increase in scams and attacks against victims without distrust, and 2025 was not different.
This year, around 200 million main customers have received warnings from the company about the ongoing attacks, with some practical advice on what to look for.
“The crooks send false emails saying that your Amazon Prime subscription will automatically renew at an unexpected price,” said the company.
Asccammes Amazon Prime Day
By making believe that the costs by increasing, the attackers can instill a feeling of urgency because many seek to prevent price increases or to cancel completely. Personalized and personal information in emails, such as the name of a user, can also help imitate authenticity.
In many cases, the attackers include a link to a page for the victims in order to cancel their subscription or to modify the account parameters, leading them to a SOSIE site where they enter their identification information. Some cases have also seen attackers directly victims to sites that offer useful malicious charges, including malware that could put much more than their Amazon accounts at risk.
“The false site can also request payment information and other personal details which, once entered, will go directly to the crook which will be quick to use or sell it,” continued Malwarebytes.
False messages on the renewals of the members prevail, the reimbursement offers and the calls claiming that the Amazon accounts were hacked were among the most popular scenarios that Amazon workers were forced to manage during the first days of this month.
Fortunately, the same advice always applies when it comes to protecting accounts, because social engineering remains the most effective attack vector.
Certain current steps include the verification of the sender’s e-mail address compared to a verified list, allowing a two-step verification on the accounts, and not repetition of passwords on several accounts and not to follow the links, unless it is absolutely necessary.
Amazon also repeats his messages in the messages center, so if a message is received only by e-mail, this could be a sign of attack.
