Real Amazon Message vs Fake Amazon Message
How to tell a genuine Amazon notification from a scam impersonating the brand to steal credentials or payment data.
Last reviewed: 1 June 2026
Amazon is one of the most impersonated brands in phishing and smishing campaigns. Fake messages claim your account is locked, a payment has failed, or a suspicious order has been placed — all designed to create urgency and drive you to a fake login page. Genuine Amazon notifications share a consistent characteristic: any real issue is visible when you log in to your account directly, and Amazon never needs you to re-enter payment card details in response to an email or text. The one-step test — check the account directly without clicking the link — catches the vast majority of fakes.
Side-by-side comparison
| Real Amazon message | Fake Amazon message | |
|---|---|---|
| Account record | Issue visible in your account when you log in directly | Claimed issue not present anywhere in your actual account |
| Link destination | Any link goes to amazon.com or your region's official domain | Link leads to a lookalike domain with subtle differences |
| Payment request | Payment managed through your stored account methods | Asks you to re-enter payment card details via a link |
| Greeting | Addresses you by your registered full name | Generic: 'Dear Customer', 'Hello User', or only your first name |
| Order reference | References a real order number visible in your account | Vague order reference or one that doesn't appear in your order history |
| Urgency | Account issues have a reasonable resolution process | 'Verify within 24 hours or your account will be permanently closed' |
Common red flags
- Message asks you to re-enter payment card details
- Link destination domain is not the official Amazon domain for your region
- Order or account issue not visible when you log in independently
- Generic greeting without your registered name
- Pressure to act within hours or your account will be suspended
- Text or email arriving without any prior order or account action on your part
Verification steps
- Open the Amazon app or type the official URL directly — do not click the link in the message
- Check your orders, account alerts, and payment settings for any genuine issue
- Verify any order number mentioned in the message against your actual order history
- Report the message to the platform's official phishing reporting channel
- Check the sender's actual email domain — not just the display name — for authenticity
What not to do
- Don't click links in urgent account or order alerts without first checking your account directly
- Don't enter payment card details or passwords on any page reached via an email or text link
- Don't call phone numbers provided in the message — find the official contact number independently
- Don't assume visual design — logos, colour schemes — authenticates the message
A safe response
Ignore the link and log in to your account via the official app or website. If no issue exists in your account, the message is fraudulent — report it to the platform and delete it. If you have already entered credentials or card details, change your password immediately and review your account for any unauthorised changes.
Frequently asked questions
The email mentioned a real order I placed — does that make it genuine?
Not necessarily. Scammers can obtain partial order data from data breaches or by guessing common shipping intervals. Always verify in your actual account rather than treating a real-sounding detail as proof of authenticity.
What should I do if I received a call from 'Amazon' about fraud on my account?
Hang up and call Amazon's official customer service number, which you find by going to the Help section of the official website. Amazon does not cold-call customers about fraud investigations and will never ask for gift-card payments.
Are Amazon-branded phishing texts also common?
Yes. The same tests apply: check your account directly, do not click the link, and do not enter card or login details on a page reached from the text.