Spot the Scam: Amazon Prime Day, Costco Raffle, Free Adidas Shoes, and Netflix Phishing Scams (20210618)

    Amazon Prime Day Scam_0618

    Is the Amazon Prime Day giveaway real? Costco sends me a text message that says I have won in their raffle campaign? This week’s article will introduce 4 viral phishing scams in details, including Amazon Prime Day, Costco raffle, Adidas anniversary giveaway, and Netflix online survey scams. Check how these hot scams work and learn tips to avoid them:

    Amazon Prime Day: Phishing scams are already there!


    Amazon announced that the Amazon Prime Day 2021 will be live on June 21 and 22. Are you ready to buy all the goods in your shopping cart? We know you are excited about this yearly big event, but please be careful as well – carefully planned scams are also around the corner!

    Amazon Prime Day scams come in many ways, and one of them is to use fake text messages with phishing links. Scammers use various excuses to lure you into clicking on the link, but the tactics remain the same: once you click it, you will be taken to a web page and asked to enter sensitive personal information such as banking details. Scammers will then record the data you provide and use it to steal your money as well as your identity.

    Here are some examples we have observed this week. You might think they look familiar because we have written about them several times:

    • Fake 30th Anniversary Giveaway
      Scammers impersonate Amazon and send you phishing links, falsely claiming that they are celebrating their 30th anniversary and giving away gifts. Do not click on the link!
      -hxxp://xtotw6[.]cxcjghh[.]cn/ (URL) hxxp://cpcb0y[.]17clean[.]net/ (URL) Amazon 30th anniversary celebration Free gifts for everyone
    Spot the Scam_Amazon celebration_0618_1
    Fake 30th Anniversary Giveaway. Source: Rappler
    • Fake Amazon Rewards
      –Rick, you still have $150  Amazon Bonus credit: w1fbv{.]info/(URL) See what you can buy before it expires on 03/23
      –FINAL NOTICE: Wil, please confirm the details for shipment ID: AmazonRewards J62H8 here: <URL> Description: $110 bounty
    • Fake Payment Notification
      –Dispatched: Dear Customer, Credit Card – Amazon Pay ICICI Bank Credit Card for ICICI Bank Acct XX3009 is sent by Blue Dart Courier, AWB 38534781552 on 09-JUN-21. Track status at <URL>
    • Fake Package Delivery
      –Delivered: Your Amazon package with Mayfair Games CN3025 Catan: Junior and 1 other item was delivered. More info at <URL>
    • Fake Amazon Raffle
      –Amazon: Congratulations Clifford, you came in 1st in this week’s Amazon pods raffle! Click the link to  : <URL>

    No matter which trick you fall into, once you click on the link in the text message, it will lead you to a fake online survey page and ask you to finish it for expensive rewards.

    Spot the Scam_Amazon Survey_0611

    After that you will have to enter personal information and banking details to “pay” for your gift. This is when you hand in sensitive credentials to scammers!

    Spot the Scam_Amazon_0528-2

    Costco Raffle Scam


    Congratulations, you won an iPhone! Wait a second and do not click on anything… It’s a scam!

    Spot the Scam_Costco Raffle_0618
    Costco raffle scam text messages found on Twitter and Reddit.

    Content
    Costco: Dal, your code 24625 printed on your receipt from 24 came in 2nd in our iPhone raffle: d3qmv[.]info/(URL)

    Scammers pretend to be Costco and send text messages with phishing links that say your Costco receipt code has won you an expensive gift, such as iPhone, iPad, or AirPods. If you take the bait and click on the link, it will lead you to a fake Costco page and ask for your personal information.

    Like all other fake raffle scams, no gifts will ever be delivered. What’s worse, the sensitive credentials you have submitted will be used for other scams such as identity theft!

    Adidas Anniversary Giveaway Scam


    Earlier in March this year, we have reported about Women’s Day scams on WhatsApp. Scammers pose as Adidas and send messages with phishing links, falsely claiming that you can win a reward by participating in an online survey or lucky draw campaign.

    Now the Adidas giveaway scams have gone viral again. Here’s how the phishing scam unfolds:

    Adidas giveaway scam.
    Adidas giveaway scam.

    Once you click on the red button, it will take you to a page to play lucky draw.

    Adidas giveaway scam.
    Adidas giveaway scam.

    Congratulations! If you click on the OK button, you will be asked to share this page with your contacts. Once you finish, the page asks you to “complete registration” for your reward.

    Adidas giveaway scam.
    Adidas giveaway scam.

    By clicking on the green button, you will go to a page that looks like a video. You’ll be asked to press “Allow.”

    Adidas giveaway scam.
    Adidas giveaway scam.


    If you do so and click on the play button, you will be directed to a phishing page and need to enter your personal information, including name, birthdate, home address, and even credit card number. The sensitive information you provide will end up in scammers’ hands, and they can use it for other scams such as identity theft!

    Netflix Phishing Text Messages


    People still stay at home (and enjoy watching Netflix) most of the time because of the pandemic, and that’s why scammers will not give up the chance to impersonate Netflix to exploit you.

    We have reported phishing text messages about fake Netflix 1-year free subscription scams several times, and this week we have seen more Netflix text message scam cases:

    • Fake Netflix Renewal Notification
      –Your Netflix account failed to renew it’s subscription. To prevent termination of your account, please update your information. <URL>
    • Fake Netflix Account Alerts
      –Netflix warning: Your Netflix account has been put on hold. Resume your membership right away <URL>
      –Your Netflix account will be locked because your payment was declined <URL>
    • Fake Credit Report Information
      –Add Your Rent, Netflix & Amazon Prime to your Credit Report to increase your Score!  Start below, It’s Free  <URL>

    In these cases, if you click on the phishing link in the messages, below is what you will experience:

    Spot the Scam_Netflix Scam_0618

    1. The phishing link takes you to a fake Netflix page that says you can get a 1-year free Netflix subscription as a reward.
    2. If you click on the “START” button, you will be asked to enter personal information such as name and email address.
    3. Then, you will be asked to enter your phone number and home address to “validate your entry.”
    4. After that, you will start to do an online survey.

    Spot the Scam_Netflix Scam_0618_5-8

    5. When you finish the survey, the page says “click to confirm.”
    6. Then it presents you with various gifts to choose from.
    7. No matter which gift you choose, you will need to enter your email address again to claim the reward.
    8. To “pay” for the gift, you are required to enter credit card information, including expiration date and CVC code. If you submit these credentials, they will end up in scammers’ hands and be used to steal your money as well as identity! Don’t let them!

    How to Avoid Phishing Scams?

    • Double-check the sender’s mobile number/email address.
    • Reach out to the official website or customer support directly for help.
    • Too-good-to-be-true offers are a major red flag.
    • NEVER click links or attachments from unknown sources. Use Trend Micro Check to detect scams with ease!

    Send a link or a screenshot of suspicious text messages to Trend Micro Check on WhatsApp for immediate scam detection:

    Trend Micro Check is available on WhatsApp.

    Trend Micro Check is also available as a Chrome extension. It will block dangerous sites for you automatically:

    Trend Micro Check blocks dangerous sites for you automatically.

    Did you successfully spot the scams? Remember, always CHECK before your next move.

    Download Trend Micro Maximum Security for even more protection, including Web Threat Protection, Ransomware Protection, Anti-phishing, and Anti-spam Protection. Gain access to the Privacy Scanner for Facebook and Twitter, Social Networking Protection, and Parental Controls, too. Click the button below to give it a try:

    If you find this article helpful, please SHARE to protect your family and friends!

    Post a comment

    Your email address won't be shown publicly.

    0 Comments

      This website uses cookies for website functionality, traffic analytics, personalization, social media functionality and advertising. Our Cookie Notice provides more information and explains how to amend your cookie settings.