Amazon hacked?
I cannot find anything online in a Google search about this; perhaps your wiser heads will know more.
My wife got an email from Amazon yesterday saying she needs to validate her account details because of a recent order that is yet to be delivered.
My paranoid wife asked me to have a look. All seems genuine. The text has come from the Amazon.co.uk FAQ page. She has an order that was palced a few days ago that has not yet arrived. But...
The "Please verify your e-mail address to continue." link points at a script on voudini.com and amongst the headers is:
So it is a scam, a very convincing scam.
BUT
How did the scammer know the email address to use unless Amazon has been hacked, or a member of staff is responsible?
(Yes, I have reported it to Amazon.)
My wife got an email from Amazon yesterday saying she needs to validate her account details because of a recent order that is yet to be delivered.
How will VAT increase affect me?
The UK Standard VAT Rate will revert from 15% to 17.5% on Friday, January 1, 2010. Below you will find information about how the VAT-rate increase will affect you.
What do I need to do at this time?
We maintain physical, electronic and procedural safeguards in connection with the collection, storage and disclosure of personally identifiable customer information. In order to maintain the integrity of our system, we are requesting an update of your current account information. We hope you understand that this is a valuable security precaution designed to protect our customers.
The information you enter will be transferred to our Accounts Department for the purposes of processing by Amazon.co.uk. By submitting your information, you consent to this transfer.
The UK Standard VAT Rate will revert from 15% to 17.5% on Friday, January 1, 2010. Below you will find information about how the VAT-rate increase will affect you.
What do I need to do at this time?
We maintain physical, electronic and procedural safeguards in connection with the collection, storage and disclosure of personally identifiable customer information. In order to maintain the integrity of our system, we are requesting an update of your current account information. We hope you understand that this is a valuable security precaution designed to protect our customers.
The information you enter will be transferred to our Accounts Department for the purposes of processing by Amazon.co.uk. By submitting your information, you consent to this transfer.
The "Please verify your e-mail address to continue." link points at a script on voudini.com and amongst the headers is:
Return-path: <ghscom@host.globalherbalsupplies.com>
BUT
- This is the only email address we use for Amazon and it is used on Amazon.co.uk.
- Between us we own eight domains and any email, regardless of the bit before the @ is delivered to us.
- This is the only such email we have had.
- My wife has an outstanding order that will overlap the 1st Jan 2010 VAT change.
How did the scammer know the email address to use unless Amazon has been hacked, or a member of staff is responsible?
(Yes, I have reported it to Amazon.)
Comment