Amazon Scam | A New Twist

Watch Out for Latest Amazon Scam

This new twist for the Amazon scam. It does not contain any links. It does have an attached file which I am sure includes malicious code.

Do you, your family and your employees know how to spot an email scam or phishing attempt? Someone who is an Amazon affiliate may just fall for this one. There are giveaways that are generally consistent with phishing or scams. This one is no exception.

The most glaring one is the from email address. While the shown name is Amazon Marketplaces which may fool some even though is says Marketplaces – should have been Marketplace. The actual email address is not from the Amazon domain., as shown below.

Amazon Marketplaces <reservations@thebistr********>

Your Amazon Seller Fees VAT Invoice for 6/2019-ID (New-ID: 112-5591137-4708119)-[05/2019]


Please find enclosed an electronic tax invoice for the month of 6/2019 in HTML format. Please note that this invoice is not a request for payment.

To review your account summary or request other copies of your tax invoices, please log into your Seller Central account.

If you have any questions, please contact Seller Support.

Best regards,

Amazon Payments Services

Learn how you can teach your employees to avoid phishing and other scams. This not only helps protect your company but your employee and their family as well from possible scams that can lead to Identity Theft or serious security breaches. Contact us HERE

Quest Diagnostics Data Breach

Quest Diagnostics Data Breech

The most recent Data breach involves Quest Diagnostics. Quest is among the largest medical testing labs on the planet. The unfortunate thing about this breach is the magnitude. Over 12 million people may have had Personal, financial and other information compromised. What’s more Quest was not the party that was hacked. In fact it was a subcontractor who worked for the company Quest contracted with to handle their billing.

Third Fourth Party

This is really bad in many ways other than the 12 million Quest customers who had their information stolen. While Quest was not hacked they are still seen as the responsible party by the customers. Quest uses Optum360 for its billing collections. Optum360 in turn uses AMCA(American Medical Collection Agency) for those services. Apparently AMCA told quest of the breach in mid May but were unsure of when the breach/hack occurred. The story is longer and more involved than I am going to engage in here, but this is the 30,000 foot overview.


The point here is that you need to be specific when outsourcing operations. You need to know and agree to exactly who is going to be doing the your work. This is especially true when it involves PII, PHI or Financial information. The reason should be clear. The news and other media top stories all imply on the surface that Quest Diagnostics was the company whose systems were compromised. As you know media always wants the most compelling headlines.  If they were to say AMCA was breached, fewer readers/viewers would pay attention.

My question is who else uses AMCA for their collection services. How many other peoples information may have been stolen. What if anything will AMCA, Optum360 and Quest be required to do if identities are stolen.  Can this information be sold to insurance companies? Could it be used against the victims in the future. Perhaps for health care related situations or to increase their premiums.

Are Your Systems at Risk

The details of the breach are still unknown. The fact remains that no business with an online presence is at risk of their systems being compromised. The biggest threat to most businesses is not of being hacked by some nefarious character. It is from inside its own employee base. It could be a disgruntled employee intent on causing as mush damage as possible. Possibly someone who feels they don’t get paid enough exfiltrates proprietary information and sells it to the competition. The biggest insider threat is an uninformed employee. Careless actions like inserting a thumb drive that is of unknown origin or clicking on a link in an email.

Phishing and Pharming

Two types of email scams out there to be watchful for are Phishing and Pharming.

You have likely heard of Phishing but what about Pharming? I will explain both to give you a clear picture of that both are and what you can do to keep from becoming a Pharmed Phish.

Lets start out with Phishing.

Generally a phishing email is designed to get the recipient to take an action. The email is crafted to scare or bait the recipient into clicking a link contained in the email. The link can lead you to a malicious website or even immediately begin downloading a malware package. The links are usually disguised or spoofed to make you think you will be heading to a familiar and safe website.

Pharming can be much the same.

Your email may have been scraped from a website of social media platform. The email is then sent out with the same intent of getting you to click a link or sometimes even opening the email can be enough. The link characteristics are much the same as in phishing – spoofed! The links can also have the same dangerous actions associated with them.

What can you do?

I suggest that you always have a preview pane to that the email does not actually open. This can protect you a little bit. Also set your email program to never automatically download pictures. You can set the trusted email senders individually to automatically show the images.

It is probably a good idea to initially view all emails as plain text and not as html. It is likely a safer way to get your emails and it will also speed up email retrieval.

As you probably got from the above you do not have to actually opt in  to get on someones email list. As is the case with most criminal activity, the phishers and pharmers and scammers do not care about the laws. Your email can be scraped and bought and sold without your consent or knowledge. Legitimate companies do follow the rules and laws and will not randomly scrape emails from the web and try to scam you.

If you receive unsolicited emails it is safer to just mark them as junk and block them than it is to attempt to unsubscribe.

Learn how you can teach your employees to avoid phishing and other scams. This not only helps protect your company but your employee and their family as well from possible scams that can lead to Identity Theft or serious security breaches. Contact us HERE