Free tech support header

Did someone hack into my Amazon account?

I'm concerned about an email I just got from Amazon.com saying that an order I'd placed had been cancelled, but I haven't placed an order for months. Did someone break into my account that I got the message "Amazon.com - Your Cancellation (2706-81146-4342895)"

Dave's Answer:

I understand that with the prevalence of warnings and companies selling apps to prevent identity theft that you'd be paranoid and automatically jump to the conclusion that your account had been hacked and someone was playing with your account, ordering and canceling stuff.

Rest easy, though, that's not what happened.

What's surprising is that the bogus message you've received isn't a "phishing" message either. That would make sense, where you click on the "learn more" link and it says "enter your Amazon credentials" so, logically, you do, never stopping to realize that it's not actually amazon.com and you just gave some hacker your account credentials.

The one I've seen, however, was just a dumb way to send you to an online pharmacy site.

Here's what it looked like when I got it:

fake amazon cancellation email

Move your cursor over the words ORDER INFORMATION, and you'll see this URL:

  http://berhosting.net/defeated.html

We can step backwards and find out that berhosting.net is owned by:

BER WEB DESIGN SERVICES, LLC
PO BOX 43308
BALTIMORE, MD 21236

But they're not to blame, they're likely completely clueless about their part in this redirection trick. Go to the URL above and you'll actually be given this code:

<html><head><script type="text/javascript">window.location="[REDACTED]";</script></head><body><a href="[REDACTED]">Click</a></body></html>

Suffice to say, it's a redirect and it's not cool. Your best bet, as with any email you get, be skeptical and leery of clicking links. If you'd really had an order cancelled from Amazon.com, for example, you should be able to just go to "amazon.com" and click on "My Account" to learn the details, right?

Be careful out there!



Help others find this article at Del.icio.us, Digg, Netscape, Reddit, and Stumble Upon    
Categorized: Computer and Internet Basics   (Article 9335)
Tagged: , , ,
Previous: How do I upgrade my MySpace profile to Profile 2.0?
Next: How do I delete my Google Gmail account?
View Mobile Version

Subscribe!
Never miss another Q&A article! Click to subscribe: Add to Google Reader Add to My Yahoo! Subscribe in NewsGator RDF XML
Comments
Rather amazingly, there are no comments on this article yet.

I have something to say, now that you mention it, but ...
Starbucks coffee cup I do have a lot to say, and questions of my own for that matter, but first I'd like to say thank you for all your efforts on this Web site by buying you a cup of coffee!

I do have a comment, now that you mention it!











Remember personal info?


Please note that I will never send you any unsolicited email. Ever.

While I'm at it, please note that by submitting a question or comment you're agreeing to my terms of service, which are: you relinquish any subsequent rights of ownership to your material by submitting it on this site.






Recent Entries
Search
I Need Help!
Ask Me for Help


Even More Help

Join The Club!
Sign up and get free weekly updates, news on my speaking schedule, seminars, workshops and more. It's cool. Just do it. :-)
film blog - social media / blogging speaking - business blog - Colorado photography - free tech support
© 2002 - 2010 by Dave Taylor. All Rights Reserved.

Note: This web site is for the purpose of disseminating information for educational purposes, free of charge, for the benefit of all visitors. We take great care to provide quality information. However, we do not guarantee, and accept no legal liability whatsoever arising from or connected to, the accuracy, reliability, currency or completeness of any material contained on this web site or on any linked site.

[whiteboard marker tray]
"Ask Dave Taylor®" is a registered trademark of Intuitive Systems, LLC.