- Nordvpn researchers saw more than 100,000 malicious websites with a Amazon theme
- In addition to phishing for credentials, criminals are deceiving people to make fraudulent purchases
- Consumers are advised caution during the main day
Computer pirates have established thousands of false websites, using them to steal login credentials, deceive people to download malware or make fraudulent purchases before the Amazon Prime Day this year.
A new report of the NordvPN threat protection equipment has urged consumers to be more vigilant, claiming to have observed more than 120,000 malware websites, phishing and scammers supported in the last two months, falsifying Amazon.
Of that number, there were 92,000 phishing sites, 21,000 malware distribution sites and 11,000 fake products sites.
Perfect storms
“The main purchasing events such as Prime Day create perfect storms for cybercriminals. The scammers know that the emotion and urgency of buyers around the offers for limited time make them more susceptible to clicking malicious links or sharing personal information without proper verification,” said Marijus Briedis, CTO of Nordvpn.
“People must maintain good cyber hygiene even when looking for the best offers.”
While the theft of login credentials remains a key objective for many scammers, one thing is to grow more and more popular: to deceive people to make unauthorized payments. Apparently, this increased from 28% in April, to 38% today, and is “the highest objective reported.”
Events such as Amazon Prime Day, Black Friday or Cyber Monday are still key dates when cybercriminals increase their activity.
Amazon Prime Day is an important annual purchase event, during which the retail giant offers exclusive offers and discounts only for main members. It usually works for two days, but this year, it will spend four days.
While this could be excellent for consumers, it is even better for scammers who will definitely seek to exploit change, the researchers warned.
During the great week of spring sale of Amazon, which took place between March 31 and April 7, 2025, the malicious activity “exploded,” Nordvpn said, comparing the data with the previous week.
“Malware websites increased by 1,661%, phishing sites increased by 1,294%and scam websites fired by 8.325%,” he said.
Sometimes, detecting a false website can be complicated, but there are often gifts, in particular, they are attentive to obvious spelling errors in URL or headlines, for example, “Amazom.com”. And remember, a good general rule is whenever a treatment seems good to be true, there is a decent possibility that it is.
If you are worried that you have been caught by a false site, do not worry, there are a number of methods to find out. Haveibeenpwned? It is probably the best resource to verify if your data has been affected, offering a decrease in each large cybercrime incident of recent years.
You must also ensure that your devices have the best antivirus tools offered to keep it protected, along with the best firewall software and better final point protection.
