infoTECH Feature
GFI Software Unfolds Online Scam Targeting Amazon.com
By Amazon.com (News 
- Alert) is the apparent target of an online scam which creates fake receipts for items sold through Amazon.com and its partners.
GFI Software made the discovery and alerted Amazon.com about the deception which comes in the middle of the busy holiday selling season.
“Many of the items in the fake printout are convincing as a whole, but once you start digging into the details a little bit, it quickly falls apart. If a ‘customer’ seems a little peculiar, ensure you take a good look at their receipt,” Christopher Boyd, senior threat researcher, GFI Software, advises in a company statement.
“The free program available online allows scammers to create an HTML ‘receipt’ for phantom Amazon.com purchases. By capturing a screenshot of the fake receipt, these cyber criminals are able to email unsuspecting sellers claiming they are missing items. This type of fraud, perpetrated en masse, could result in massive losses for retailers, especially during the holiday shopping season,” Boyd said.
GFI lists ways to detect whether a receipt is fake:
The seller or Amazon should be able to verify whether it is a valid order number.
The merchant does not have a record of the purchase.
Amazon should be able to confirm that no purchase was ever made.
The program appears to add “random digits” on the “Visa: payment method” section.
Merchants should check the order number (in orange) at the top of the receipt because the numbers are randomly selected.
“The scammer is relying on the seller not checking the details and accepting the printout at face value,” Boyd adds in a recent blog post on Sunbelt Blog. “After all, how many sellers would be aware somebody went to the trouble of creating a fake receipt generator in the first place?”
In other company news, TMCnet reported that GFI Software said the most prevalent malware threats for the month of November were dominated by Trojans. Seven of the top 10 malware threats were classified as Trojans, GFI said.
GFI Software is a provider of web and mail security, archiving and fax, networking and security software and hosted IT solutions, the company said.
Ed Silverstein is a TMCnet contributor. To read more of his articles, please visit his columnist page.
Edited by Juliana Kenny
|
|
FOLLOW US |  |
 |
 |
infoTECH Headlines
MSP Magnicom Helps Atlanta-Area Property Management Firm with IT Woes
Apacer Debuts Ivy Bridge Compatible Low-power High-speed DDR3-1600 1.35V SoDIMM
Maxthon Pushes for Improvement in Web Privacy at W3C
Implant Sciences' Issued Patent for Improving Trace Detection Technology
The NCR Express Key: Welcome to the New Self-Service Revolution
SFL Data Enables Early Case Assessment via Intelligent Case Assessment Workflow for Relativity
Peterson Partners Announces $3.5M Investment in CLEO Communications
NextIO Completes Series F Financing with $12.3 Million
Wind River Maintains Leadership in Traditional RTOS Market
Entando Partners with Open Source ESB Vendor GreenVulcano
Rich Tehrani
Rich Tehrani
Rich Tehrani
infoTECH Whitepapers
Reducing the Cost and Complexity of Web Vulnerability Management
Protecting Against Web Application Threats Using SSL – Chapter 1: How SSL Certificates Can Protect Online Business and Maintain Customer Trust
Protecting Against Web Application Threats Using SSL – Chapter 1: Combined Risk of Data Loss and Loss of Customer Trust
A Prescription for Privacy: What You Need To Know About Security Requirements for Electronic Health Records
Securing Microsoft Exchange 2010
Choosing a Cloud Hosting Provider with Confidence: VeriSign SSL Certificates Provide a Secure Bridge to Trusted Cloud Hosting Providers
Protecting Users From Firesheep and other Sidejacking Attacks with SSL
Best Practices and Applications of TLS/SSL
Security and Trust: The Backbone of Doing Business Over the Internet
Proof Positive - Extended Validation SSL Increases Online Sales and Transactions
