Overview

• On July 4, Amazon emailed roughly 220 million Prime subscribers with a warning about escalating impersonation scams targeting membership renewals.
• Scammers are deploying multi-channel attacks—including phone calls, text messages, emails with fake “cancel subscription” buttons and social-media outreach—to steal credentials and money.
• Security researchers discovered more than 120,000 counterfeit Amazon domains and web pages set up ahead of Prime Day to facilitate these phishing campaigns.
• Amazon’s guidance advises verifying subscription status in the official mobile app or website, checking the Message Center for authentic notices and enabling two-step verification.
• In partnership with the Federal Trade Commission and Better Business Bureau, Amazon has expanded consumer education efforts and is urging users to report any suspected scams to help curb fraud.