Massive Phishing Attack Targets Amazon Users in France Using Personal Data

A new phishing scam is hitting users in France hard — and it's more convincing than ever. According to IBM Security, attackers are using leaked personal information like names, addresses, and bank details to trick people into giving up sensitive information.

The scam, which began in March 2024, has already had at least 17 waves and tricked around 160,000 people into clicking fake links.

Here's how it works: Victims receive an email that looks like it's from Amazon, claiming their Amazon Prime membership is about to renew for €480 per year. The message includes real personal details, making it look very believable. It also has a “cancel subscription” button that leads to a fake Amazon login page. If victims enter their login or credit card information there, it's immediately stolen by the scammers.

In some versions of the scam, users are asked to provide their full credit card number — giving attackers everything they need for identity theft or fraud.

IBM says the phishing activity has grown significantly over the past few weeks. By late April, the fake websites were getting steady traffic every hour, especially in the mornings.

“This attack shows how dangerous phishing has become,” IBM researchers said. “By using real leaked data, scammers make their emails more believable — and more effective.”

They also warn that as cybercrime becomes more advanced, people and companies need to stay alert and improve their digital security.

To help fight scams like this, companies such as KnowBe4 offer training to teach employees how to spot phishing and avoid falling for online traps. Over 70,000 organizations worldwide use their platform to build better cybersecurity habits and reduce the risk of human error.

If you're in France and receive a suspicious Amazon email, do not click on any links — and report it right away.