Shoppingamazon issues attack warning
Summary (tl;dr)
Amazon has issued an urgent security warning to its 300 million-plus customers, primarily in the United States, cautioning them about a significant increase in scams and cyberattacks targeting online shoppers during the Black Friday and upcoming holiday season of 2025.
Essential Background
Cybercriminals frequently target major online retailers and their customers, especially during peak shopping periods like Black Friday and the holiday season, due to increased transaction volumes and consumer distraction. Reports prior to Amazon's warning indicated that cybercriminals were already targeting major brands, including Netflix and PayPal, using sophisticated impersonation tactics, often involving browser notifications and criminal platforms.
The Full Story
On or around November 24, 2025, Amazon sent out an email advisory to its estimated 310 million active customers in the United States, urging them to be highly vigilant against a surge in fraud and scams. These "account attackers" are attempting to gain access to sensitive information such as personal data, financial details, and Amazon account credentials through various methods. Common attack methods include fake delivery or account issue messages, deceptive third-party advertisements (especially on social media) offering unrealistic deals, unsolicited tech support phone calls, and suspicious links sent via email or text requesting verification of credentials or payment information. Amazon's warning serves as a crucial reminder for customers to exercise caution as these cybercrime activities evolve and intensify during the busy shopping period.
Why It Matters
This warning is significant because Amazon's massive customer base and the wealth of personal information stored in user accounts make it a prime target for cybercriminals. The strategic timing of these attacks during the high-traffic Black Friday and holiday shopping season makes customers particularly vulnerable, as they are more likely to click impulsively on messages related to orders or deals. Successful compromises of Amazon accounts can grant criminals access to payment information, saved addresses, and purchase history, leading to financial fraud and identity theft. Amazon advises customers to use only official channels for account management and to enable two-factor authentication to protect their accounts.
Geographic Location
- United States (Amazon issued a security advisory to its customers about scams and cyberattacks during the Black Friday and holiday shopping season)