This is How Amazon Prime Day Was Used To Scam Eager Consumers


The Bigger the Brand, the Bigger the Risk of Phishing Scams to its Consumers 

This is the message we can learn from a recent Segasec research into potential cyber-attacks against retail giant, Amazon, around the Prime Day period.

More than 4,000 suspicious domains and subdomains targeting Amazon customers were discovered between July 10th and July 21st, with more than 100 live attacks. We can assume that Amazon was unaware of these phishing scams, live threats that were targeting their customers to steal sensitive information under the brand’s name.

The Potential of Big Brand Phishing Scams

Below, you can see one of these attacks, in which users received an email from a no-reply account, encouraging them to enter their sign-in credentials, billing address, and billing information. In the form, you can see how many sensitive credentials the attackers would receive if this scam was successful, including card details, password, and date of birth. Customers who were eager to receive their Prime Day purchases were likely to be fooled by the mimicry of the colors and branding.

Sophisticated Content Scraping

Attacks were found targeting customers all over the globe. One example is this excellent copy of the Amazon Japan sign-in page, fooling customers into giving over their username and passwords for their Amazon accounts. This particular attack was shown as non-secure in the toolbar, but attackers are increasingly able to fool users with HTTPS, making the URLs appear to be safe when they actually malicious.

Switching Between Brands Using Different Attack Kits

The Segasec intelligence has also proven that Prime Day can be a stepping-stone for hackers to move from one high-profile brand to another. This example shows how attackers use the Amazon-related domain to target PayPal customers. Switching between attack kits can help hackers stay under the radar and avoid being caught, and can also easily capitalize on high-profile events such as Prime Day or Mother’s Day, as one of our previous researches has shown.

Too Much Noise to Handle

The level of threat for a brand like Amazon is staggering, and is too much to deal with manually. The only way for large brands to handle the risk to their consumers is to use Machine Learning. The benefits of this include:

Scalability: Automatically scale upwards during holiday seasons or peak shopping times, covering the increase in traffic and threats.

Automation: The Amazon SOC team must have been working overtime around Prime Day. Using a Machine Learning solution, the problem would have been taken off their hands entirely.

Proactivity: Segasec found over 100 live threats, all of which Amazon would need to deal with in crisis mode. Machine Learning acts ahead of time, before a phishing scam goes live.


Ready to have Segasec’s intelligence on your side? Let’s schedule a call.