Phishing emails can be terrifyingly successful. Scammers flood our inboxes, hoping that we fall for their devious tricks as they try to steal personal information and money. It seems like we are in a never-ending battle against these types of attacks.
We recently told you how Apple customers were being targeted with a massive email scam. Now, customers of a major credit card company need to be extra careful.
American Express cardholders are being targeted with a new, sophisticated phishing attack. The scam email appears to be so legitimate that it is important for people to have their guard up when they receive this fraudulent message.
The email claims to come from American Express, warning the recipient to stay protected from fraud and phishing scams. The customer is asked to set up an "American Express Personal Safe Key (PSK)" to make their account more secure. There is a link at the bottom of the email to "Create a PSK," which leads to a phony American Express login page.
Once the victim provides their login information on the fake American Express page, another phony page opens. This is when the victim is asked to enter sensitive information like their card number and expiration date, along with the four digit CVV (Card Verification Value) code. Then they need to enter their birth date, Social Security number, mothers' maiden name, and email address.
The phony site looks very similar to the official American Express site. Savvy customers might realize that there's no reason for American Express to ask for information that it already has, and avoid the scam.
If you want to avoid becoming a victim of a phishing scam, there are some things you can do. First, never click on a link inside a document, email or another website to get to a sensitive site. You should always type the link to the sensitive site yourself.
If you get an email asking for information from your bank or credit card company, call them. Use the phone number located on the card and avoid phone numbers or links found in the email itself.