Amazon has issued a sweeping cybersecurity alert to its 310 million global users, warning of a sharp rise in sophisticated scams targeting shoppers ahead of the holiday season. The alert comes amid a wave of new data confirming that cybercriminals are aggressively impersonating major brands like Amazon to steal login credentials, financial data, and personal information. What Triggered the Alert? On November 24, Amazon sent out a warning email to users, flagging a surge in impersonation scams. These attacks are designed to trick users into handing over sensitive data such as: Amazon login credentials Credit card or bank account details One-time passwords (OTPs) or multi-factor authentication codes The scams are delivered through a variety of channels, including fake delivery notifications, phishing emails, spoofed customer service calls, and malicious ads on social media. Amazon emphasized that it will never ask users to verify account details via email or request payment information over the phone. FBI Confirms $262 Million Lost to Brand Impersonation Scams in 2025 The FBI’s Internet Crime Complaint Center (IC3) issued a public service announcement on November 25, confirming that over $262 million has been lost to brand impersonation scams since January 2025. These scams often involve attackers posing as customer support agents from trusted brands like Amazon, PayPal, or Netflix, convincing victims to hand over login credentials or MFA codes. Once attackers gain access, they