SMS-based phishing attacks, often called "smishing," are on the rise. One of the most common variants targets Amazon users by claiming there is a suspicious transaction or security issue on their account. These scams attempt to deceive recipients into clicking malicious links and handing over personal information.

Common Scam Message Patterns

These fraudulent text messages come in several variations, but they all follow a similar pattern:

Variation 1: The message claims a suspicious transaction was detected and that your account has been deactivated. It asks you to verify your payment methods through a shortened URL.

Variation 2: The message alerts you about an unusual order and states that your account has been locked. It instructs you to click a verification link to restore access.

Variation 3: A more sophisticated variant that mentions a suspicious login attempt from a foreign country like Nigeria. It includes fake IP addresses and device information and threatens account termination if you do not act immediately.

Key Warning Signs

These scam messages share several characteristic features that can help you identify them:

• A sense of urgency regarding account security.
• Requests to click links or verify personal information.
• Threats of account suspension or termination.
• Spoofed Amazon branding and communication style.

How to Protect Yourself

CleanBrowsing's security filter actively blocks many of the malicious domains used in these scams. However, the best defense is awareness and caution:

• Never click links in unsolicited text messages.
• Visit Amazon.com directly through your browser to check your account.
• Contact Amazon support independently to verify the legitimacy of any alerts.
• Avoid calling numbers provided in suspicious messages.

Staying vigilant and using DNS filtering services like CleanBrowsing can significantly reduce your exposure to these increasingly common phishing attacks.