ScamSentinel

Email Phishing Guide

Amazon Scam Emails

Amazon is the world's most-impersonated brand in phishing. From fake refund notices to fake order confirmations for items you didn't buy, scammers use Amazon's familiarity to make you panic and click.

Check a message nowHow it works

What is this scam?

Amazon scam emails are designed to provoke an immediate reaction — either fear ("a £899 order has been placed") or excitement ("your refund is ready"). Both lead to fake login pages or fake support phone numbers. Once you call, scammers pose as 'Amazon support' and walk you through installing remote-access software or transferring money to a 'safe account'. The email is just the doorway.

Common warning signs

  • Email about a large order you didn't place
  • Refund notice for a purchase you don't recognise
  • Sender domain isn't @amazon.com or @amazon.co.uk
  • Asks you to 'call to dispute' a phone number
  • Login alert from a country you don't live in
  • Generic greeting — Amazon uses your real name
  • Links go to amazon-secure-login.com or similar lookalike domains
  • Attached PDF 'invoice' for a fake order

Realistic scam examples

Fake order confirmation

From: orders@amzn-billing-support.com
Subject: Your Amazon order #114-3829471 has been confirmed

Thank you for your order!
1x Apple MacBook Pro 16" — £2,399.00
Estimated delivery: tomorrow

If you did not place this order, call us immediately at +44 203 488 1199 to cancel.

Fake refund notice

From: refunds@amazon-secure-billing.com
Subject: Refund pending — confirm your details

Dear Customer,
A refund of £142.80 is pending for your recent order. To complete the refund, please confirm your card details at the secure link below within 24 hours.

[Claim Refund]

Fake Prime renewal

Your Amazon Prime membership has been auto-renewed for £95.00. If this was not authorised, cancel here: amazon-prime-cancel.co/account

How to stay safe

  • Never call a phone number from an email. Open the Amazon app or amazon.com and check 'Your Orders' directly.
  • Real Amazon emails come from @amazon.com or your country's @amazon domain. Anything else is a scam.
  • Amazon will never ask for your password, card PIN, or to install remote-access software.
  • Forward suspicious emails to stop-spoofing@amazon.com — they'll investigate and shut down the source.
  • Enable two-step verification on your Amazon account.

Not sure if a message is a scam?

Paste it into our free AI scam checker for an instant analysis.

Analyze a message

Frequently asked questions

How can I tell if an Amazon email is real?

Check the sender's full email address (not just the display name), open Amazon directly to verify any orders or refunds, and never trust phone numbers or links inside the email itself.

Does Amazon call customers about refunds?

No. Amazon handles refunds entirely within your account. They never call you to ask for card details or to 'process' a refund over the phone.

What is the Amazon support phone scam?

After you call the number in a fake email, a scammer posing as Amazon support convinces you to install remote software (often AnyDesk) or transfer money to a 'safe account' — both result in major financial loss.

How do I report an Amazon scam email?

Forward it to stop-spoofing@amazon.com and report it to your country's anti-fraud body (Action Fraud in the UK, FTC in the US). Then delete it.

Related scam guides

PayPal ScamsEvri Text ScamsBank Phishing Text Scam