10 Common Amazon Scams and How to Protect Yourself: A Quick Guide
Amazon scams are on the rise. If you shop on Amazon, it’s essential to know what red flags to look out for. Our cybersecurity experts have compiled a list of 10 common Amazon scams, and we offer useful tips on how to protect yourself.
Here are some telltale signs that you’re in the crosshairs of Amazon scammers:
Many of these scams are far less likely to impact you if you’re using a VPN. We use NordVPN when shopping online. It encrypts your data, protects you from malware, and blocks malware-infected websites. Right now, you can get a 69% discount on NordVPN and enjoy complete protection for as little as $ 2.99 per month.
Continue reading for more information about Amazon scams. We also provide safety tips and explain how to report scams to Amazon.
Amazon is huge, and the chances are that you’ve purchased items from this online store. Thanks to its popularity, Amazon is rife with scammers looking to pull a fast one on unsuspecting shoppers. Do you know how to spot common Amazon scams or respond if you’re targeted?
Cybercriminals frequently change their tactics, coming up with new deceptive ways to pull off fraud schemes. With threats like sophisticated Amazon email scams, you don’t just stand to lose money but may also fall victim to identity theft. So, it’s crucial that you know the red flags to watch out for.
Our cybersecurity experts spent hours creating this list of the most common Amazon scams. Of course, we didn’t do it unprotected; we used a VPN. NordVPN has built-in malware protection and will block malicious websites, like the fake Amazon sites that we mention below.
Amazon scams are widespread, and just like scams on PayPal, people usually don’t know they’re being targeted until it’s too late. But, with a little education, you can easily spot and avoid scammers on Amazon.
We’ve rounded up the 10 most common Amazon scams so you can identify them and avoid becoming a victim. Here’s a quick overview of a typical Amazon scammers’ playbook:
1. Seller asks you to communicate outside of Amazon
Sometimes, scammers may ask you to send messages or pay for items outside of Amazon. Amazon fraudsters often trick shoppers into paying for items with cash transfers. The scam works like this:
Amazon scammers create a product listing for an item that probably doesn’t exist. Sometimes, they’ll even pay people to write fake reviews to make the product listing look legitimate.
When you try to buy the item, you get a message from the seller asking you to pay outside of Amazon using services like Venmo or Zelle.
When you checkout, your payment goes straight to the scammer, and they disappear with your cash. You have no Amazon buyer protection. Even worse, fraudsters may convince shoppers to visit a malicious third-party website and steal your payment details or login credentials.
Our advice on how to avoid this scam:
If a seller asks you to pay with Zelle, Venmo, or PayPay Friends and Family, we advise you to ignore it. There’s no protection from Amazon if you pay outside of the website. It’s unlikely you’ll be able to get your money back under Amazon’s A-Z Guarantee.
We generally advise against visiting third-party sites sent to you by sellers, and we recommend using a trusted VPN, like NordVPN, to shop safely. NordVPN can identify and block malicious websites and files. It also encrypts and protects your credentials. NordVPN is our go-to VPN for shopping safely online.
2. Messages or phone calls that request personal details
You’ve probably encountered phishing messages in the past. Whether by call, text message, or email, phishing is one of the biggest threats to online security. Here’s how a typical Amazon phishing scam works:
Somebody calls you on your personal number, claiming to work for Amazon.
They try to convince you that there’s a problem with your account. And, to “fix it,” they need to confirm your personal details.
You’re asked to share sensitive information, like your login details, payment details, address, etc.
Sharing this information with the caller will inevitably compromise your account. Amazon never asks for personal information over the phone or via email. Even if you share seemingly unimportant information, like your name and address, it could result in identity theft.
Our advice on how to avoid this scam:
Never reply to phishing messages or click any links in them. If a stranger calls you, end the call as soon as possible. Don’t share any personal information with anyone who contacts you out of the blue, even if they claim to be representatives of Amazon.
Pro Tip:
Sometimes, phishing messages are designed to make you believe your Amazon account is at risk of being blocked or deleted. If in doubt, delete the message, and log into your account. You can reach out to Amazon’s customer support if you’re concerned something may be wrong.
3. Fake refund notifications from Amazon
Another common Amazon fraud involves fake refund notifications. Scammers may send phishing emails promising a refund for an item you’ve ordered, or they may tell you that somebody’s made an unauthorized purchase on your account. This is how the scam usually works:
You receive an email that claims you’re due a refund.
You’re asked to click on a link — that will lead you to a malicious website — or call a number. If you call, you’re connected to a scammer.
Ultimately, scammers will ask for your personal information, ostensibly to confirm your identity and process the refund. In reality, they’re collecting data to hijack your account.
Our advice on how to avoid this scam:
Don’t click on links in phishing emails. Also, never call a number in phishing messages. We recommend signing into your Amazon account via the official app or website to check your account status.
4. “Mystery boxes” containing secret items
There are thousands of “mystery box” videos on YouTube from popular vloggers. The premise is they buy a box from the internet that could contain valuable goodies. Thousands of people subscribe and watch the big reveal. The thrill of mystery boxes is similar to gambling. And, just like gambling, it doesn’t work out as well for most people.
Here’s how mystery box scams work on Amazon:
You come across a “mystery box” on Amazon that may contain high-value items. Usually, these boxes have a disproportionately low price tag.
You gamble on getting the valuable item and buy the box.
When you receive the box, it contains something with low or zero value, and you’ve lost your money.
Our advice on how to avoid this scam:
Unfortunately, we can’t rely on Amazon to crack down on mystery box scams. The e-commerce giant has an entire category for these kinds of products.
That’s because some “mystery boxes” are legit. For example, you may find bundles of tech that have been returned as defective in a mystery box. Some small businesses make a profit fixing and refurbishing these products. But it doesn’t stop scammers from hijacking the idea to orchestrate scams.
So, use common sense and caution, and don’t buy anything you’re unsure about — or avoid buying mystery boxes in general. Remember, Amazon won’t refund you if the item you buy turns out to be far lower in value than you expected.
5. Fake product listings that have genuine reviews
Reviews are social proof. If you’re on the fence about buying something, you may check reviews to see what other customers have to say. Scammers know this and use fake Amazon reviews to trick buyers into purchasing fake or low-quality products. This Amazon scam is so widespread that major firms, including Amazon, TripAdvisor, and Booking.com, have teamed up to combat the issue.
Here’s how the scam works:
Fraudulent sellers hijack old product listings that have positive reviews.
They sub out the existing product details and images with their information — usually a counterfeit or poor-quality item.
Since the reviews are so positive, you’ll see the product at the top of your search results.
If you buy the product, you’ll be sent a fake item lower in value than the original, or you may get nothing.
Our advice on how to avoid this scam:
When something seems too good to be true, that’s usually because it is. Short of making a mistake, sellers aren’t going to give you a genuine product worth hundreds of dollars for a fraction of its monetary value.
Pro Tip:
If you’re in doubt about the authenticity of a review, click on the reviewer’s name. You can see a full list of all of the reviews they’ve left on Amazon. This helps to build a picture of whether a review account is real or fake.
6. Phishing emails asking you to click on a link
Phishing emails invite you to click a link that opens up a malicious website. If you fall for it, the website can harvest any data you input into the page, including your Amazon login details. Worse, the website could inject malware into your device.
While phishing attempts have become increasingly convincing over the years, some phishing messages are easier to spot than others. The example above is one of the many emails we’re bombarded with every week, and it’s a poor attempt. But the threat of phishing is very real.
Our advice on how to avoid this scam:
Never click on links in unsolicited emails. In fact, we think it’s good practice to avoid clicking on any links in any emails, ever! More importantly, download NordVPN for protection against phishing. If you slip up and click one of those links, NordVPN will protect you by blocking malicious websites and malware-infected files.
7. Requests for payment on Amazon using gift cards
According to Capital One, gift card fraud rose more than 350% between 2018 and 2021. Scammers will usually tell you there’s a fine or tax you need to pay or that you need to provide gift cards to release a prize you’ve won. Here’s how a typical Amazon gift card scam works:
Your data is leaked in a breach, or you click on a phishing link.
This allows scammers to contact you by phone. Usually, they’ll claim you need to pay a fake invoice or fine.
You’re told to buy gift cards and provide the code on the back.
Why Gift Cards?
Gift cards are a common choice among criminals who launder money. The funds are far harder to trace than monetary transfers. This makes it more likely that criminals can get away.
Our advice on how to avoid this scam:
You’ll never be expected to pay for something legitimate on Amazon using a gift card. While Amazon gift cards exist, they’re designed to allow users to fund their accounts for future purchases. If someone asks you to buy gift cards for an unusual reason, you’re most likely dealing with a scammer.
Gift card fraud is no joke. You might wonder who would buy gift cards and hand over the codes. But, according to Capital One, one in four Americans reporting a fraud loss to the FTC say they’ve been the targets of gift card scams.
8. Fake Amazon websites
Fraudulent websites can compromise your device and steal your personal data. Scammers are known to create fake websites that look like Amazon’s site to hijack your account.
Here’s how this scam works:
Scammers create fake websites that mirror legitimate Amazon websites. These fake Amazon websites usually have a similar URL — like Amazan.com or Amazon-shopping.com — to mislead victims.
They leverage common phishing tactics to drive unsuspecting victims to these websites directly. Often, this is done through emails like the one below.
If you input your login details into the website, a keylogger will send these details to the scammers, allowing them to hijack your account.
Our advice on how to avoid this scam:
Our usual recommendations for avoiding phishing scams apply here — don’t click on links in emails. To visit Amazon, type the URL directly into your browser. We recommend using NordVPN to block malicious websites and files.
Online shopping is so common that it’s easy to forget you have a delivery scheduled. We’ve been caught out by the postman before! When you receive an email saying you have missed a parcel, you may feel the urge to reschedule the delivery. Here’s how this scam works:
You receive an email telling you that you’ve missed a delivery, and you’re asked to click on a link to reschedule it.
If you click the link, you’re taken to a website that may or may not be a clone of a legitimate delivery company’s website.
The website tells you that there’s an unpaid delivery fee of a few dollars.
If you’re tempted to pay the small sum, losing that money isn’t the biggest problem. You’ve landed on a malicious website that will capture your payment method.
Our advice on how to avoid this scam:
Most delivery companies will put a card through your door if you miss a parcel. Even if they don’t, avoid clicking on any links in unsolicited email. Try to remember whether you’ve ever ordered anything. If it is a genuine delivery, the company will almost invariably try again.
We use NordVPN to avoid ending up in such a scenario. Even if we click on a phishing link, NordVPN keeps our data safe with encryption and prevents the page from loading, thanks to built-in protections against dodgy websites. You can get this same tool our cybersecurity experts use at 69% off!
10. Random deliveries from Amazon that you didn’t order
Ever wondered why you’ve been getting random Amazon packages that you didn’t order? While it could be a mistake, it might be an Amazon brushing scam. Here’s how this scam works:
A malicious seller gets hold of your details and uses them to send you products.
Now, the seller can use the fake orders to write Amazon reviews in your name, promoting their scam products.
Fake reviews entice more people to buy the item and get scammed — and your details may be used for other scams.
Our advice on how to avoid this scam:
The best way to avoid being a victim of Amazon brushing scams is to ensure your cybersecurity is up to scratch. Stop scammers from getting hold of your details in the first place by installing NordVPN. This VPN protects you from malware and malicious websites. It also encrypts your data, making it harder for third parties to hack your traffic.
Don’t be tempted to keep random packages you receive and say nothing. Always report them to Amazon so that the seller can be investigated.
Will Amazon Refund Me if I Get Scammed?
You’re unlikely to get a refund if you’re scammed — but it depends on how. Like PayPal, Amazon has strict rules for getting a refund. We’ve skimmed through the terms and conditions, and you aren’t likely to have much luck.
We recommend reading the full Amazon A-Z Guarantee to understand when you are and aren’t covered.
How to Protect Yourself From Amazon Scams
Most Amazon scams start with an unsolicited phone call or email. These phishing attacks share similar traits, so we’ve compiled some telltale signs of a malicious email that should help you spot Amazon fraud attempts.
They urge you to act quickly. Amazon scammers use unpaid bills, problems with your account, and other schemes to evoke an emotional reaction and make you act before thinking. Don’t fall into the trap. We recommend taking time to think before acting.
The email has attachments and/or links. Downloading a malicious attachment can result in your device being infected by a keylogger or other type of malware. Don’t download attachments from an unsolicited email.
The sender’s email address is unusual. Spoofing an email address is simple. Take a moment to hover over the actual sender — the name might be “Amazon,” but when you check, the emails come from something like amazon-customer-invoices@scamemails.com.
You aren’t addressed by name. If the sender or caller doesn’t know your name, it’s a red flag. It’s also a red flag if your name is misspelled or the email has a generic name like “customer” or something similar.
You’re asked to share personal data or install software. Amazon will never ask for your personal data — they already have it in your account! Don’t share personal and financial information over the phone or via email.
The email doesn’t match Amazon’s usual style. Many — but not all — phishing emails will have poor grammar, images that don’t load, and a terrible layout. Just bear in mind that it’s not a given. Some of our cybersecurity experts have almost been victims of perfectly cloned websites in the past.
9 tips on how to protect yourself from Amazon scams
As we round up our whistle-stop tour of Amazon scams, we’ve got some tips on how to protect yourself.
Use NordVPN for comprehensive online protection. NordVPN has built-in malware protection and will encrypt all of your data. It can also block malicious websites if you mistakenly click a phishing link. We use it every day for online protection.
NordVPN
Our choice
Deal
Save big with 69% off a two-year subscription + three months free!
Don’t go off-platform or use a third-party cash app to complete a purchase. Always pay for items within Amazon’s ecosystem — it’ll stop you from losing money without recourse.
Never download attachments from suspicious emails. Phishing emails often contain malware-laced attachments that can compromise your computer. Generally, avoid interacting with suspicious communication.
Don’t buy mystery boxes. It’s best to see pictures of what you’re buying. Mystery boxes are essentially gambling, as there’s no way to know what you’re getting.
Avoid calling phone numbers listed in text messages or emails. If you need to speak to Amazon customer service representatives, use the Amazon customer support page on the company’s official website. Alternatively, get the official phone number, which is also listed on the Amazon website.
Check whether Amazon reviews are legitimate. There’s no way to be entirely sure, but look at existing reviews and check the account pages of the people who wrote them.
Enable two-factor authentication (2FA) on your account. Even if a third party gets your password, they won’t be able to log into your account if you have two-factor authentication enabled. See our guide to setting up 2FA for more information.
Get the Amazon app to lessen the risk. Your phone’s Amazon app remains logged in at all times. You can quickly check on the status of your account or your orders without having to regularly input your credentials, lessening the risk of being hacked.
Don’t respond directly to phishing emails. You may be tempted to tell scammers off — we are sometimes! But all you’re doing is confirming to them that your email or phone number is in use. And you might end up getting more phishing attempts as a result.
We strongly recommend using a VPN while shopping. NordVPN shields you from Amazon scams. Get started now with 69% off!
Amazon has a team dedicated to combating scams. If you receive a phishing email, you can report suspicious messages in one of two ways:
By sending the email as an attachment to stop-spoofing@amazon.com
By forwarding the email to stop-spoofing@amazon.com
We recommend choosing the second option. Some phishing emails contain attachments that are riddled with malware. Don’t risk downloading or opening the wrong thing — simply forward the email, delete it, and don’t think about it again.
It’s also worth checking with your credit card company to monitor for any suspicious transactions.
Final Thoughts: Stay Safe From Amazon Scams
Amazon scams are rife due to the popularity of the e-commerce website. But most of them rely on age-old phishing tactics to reel in victims. Now that you’ve learned about common Amazon scams, you can keep your device and wallet safe from any rogue Amazon seller.
With the rise in cybersecurity threats, we never connect to the internet without a VPN — especially when shopping or handling other finance-related activities online. Download NordVPN today and stay protected online.
NordVPN
Our choice
Deal
Save big with 69% off a two-year subscription + three months free!
10 Common Amazon Scams and How to Protect Yourself: Frequently Asked Questions
Do you have questions about Amazon scams? We’ve covered some of them in the FAQ section below.
What to do if you get scammed on Amazon?
If you receive an Amazon scam email, forward it to stop-spoofing@amazon.com and delete it. Never click on any of the links in the message. If you’ve already been scammed, contact Amazon to see if you’re eligible for a refund. Depending on your region, you should also report it to the authorities. For example:
Action Fraud in the United Kingdom
Federal Trade Commission in the United States
Does Amazon notify you of suspicious activity?
Yes, Amazon notifies you when it detects a suspicious login. But, cybercriminals also use fake notifications to lure victims to phishing sites. If you receive such a notification, we recommend typing the official Amazon website into your browser to check on your account. Never click on a link in a message.
Check out our NordVPN review to see how this simple software can protect you from phishing emails, malware, and cloned Amazon websites.
Why am I getting random Amazon packages?
Amazon brushing scams involve a scammer sending a package to your home so they can write a fake product review in your name. In some cases, scammers might use your details for other purposes. Contact Amazon to report any suspicious deliveries you receive.
Why is Amazon saying someone logged into my account?
One of the few messages that Amazon sends is a warning if someone logs into your account from an unfamiliar device or a new location. Always pay attention to these messages and treat them with caution. Don’t click on suspicious links, and enable two-factor authentication to prevent other people from accessing your account.
Chris is a tech journalist with many years’ experience covering online privacy and cybersecurity. He’s also a published author and works as a Product Manager for some of the most innovative software development companies.