A phishing email scam disguising itself as an agent of American Express is focusing on clients’ sensitive data by expressing that there is a security issue with their credit card. The email trick asks clients for their personal information through an attached form and prompts the users to create new login credentials.
Mode Of Operation
These phishing email scams are seen to have subjects, for example, ‘Notice Concerning your CardMember Account’, ‘Reminder – We’ve issued a security concern (Action Required)’, and ‘REMINDER: A concern that requires your action’.
The email content expresses that:
“… at the time of report analysis, we encountered errors, therefore we order you to confirm your on-document records with us through the attached safe fillable web form.”
The attached form to be filled requests details, for example, users’ online account credentials, card number, security code, expiration date, mother’s maiden name, mother’s birth date, birth year, first elementary school name, and security pin. Then it redirects the victims to create new login credentials.
A case of the phishing email seen by Myonlinesecurity can be seen underneath.
“Primary Cardmember Message
We are writing to let you know that there is a recent security report for your American Express Account(s). At the time of report analysis, errors were encountered.
In view of this, We mandate that you confirm your on-file records with us.
You are to
A safe attached fillable Web form is sent with this message.
*See attached form, download and open to continue.
Thank you for your continued card membership,
American Express Customer Service”
When the victims submit the form with their own details, the gathered data is then sent to the tricksters. The clients are then redirected to the real americanexpress.com page that states “Thank you for your feedback.”
It is to be noticed that these messages are conveyed from mail domains that depend on the “American Express” keyword, for example, AmExpress@amnex[.]com, AmericanExpress@aemail[.]com, and AmericanExpress@ampress[.]com.
How to remain safe from such scams?
It is imperative for all web clients to know about such phishing tricks and pursue certain standard security practices to secure their online accounts.
It is to be remembered that organizations particularly financial associations don’t ask for personal information through email or on call.
On the off chance that you get any such email that contains links to sites and requests for your personal information, then it may be a scam, thus it is prescribed that you contact the association to confirm the email.