See Full Article: https://www.forbes.com/sites/daveywinder/2025/12/23/critical-amazon-security-update---millions-of-users-must-now-decide/
The U.S. Treasury has warned consumers of a surge in phishing attacks that
“frequently impersonate trusted brands,” and one threat intelligence report has confirmed that Amazon accounted for 80% of such attacks in November alone, beating Apple, Netflix and PayPal in the impersonation threat stakes. Now is the time for millions of users to decide whether to apply this one critical security update to protect their Amazon accounts. Change is often treated with suspicion, but with security experts and Amazon itself recommending it, choosing otherwise could be a dangerous decision. Here’s what you need to know, and do.
Amazon has warned customers that impersonation scams, in which an attacker poses as an official Amazon representative, may attempt to persuade them to disclose login credentials to compromise accounts. The online retail giant even went as far as sending an advisory email to customers ahead of the Black Friday sales. But this type of threat is not just for the holidays, although a U.S. Treasury alert confirmed that it does surge in the festive season.
“Treat urgency as a red flag. Legitimate retailers don’t pressure you to buy in the next 10 minutes,” Michael Bell, CEO at Suzu Labs, advised, adding that customers shouldn’t click links in emails or texts, but rather “open a new browser tab and go directly to the retailer's website. Call the charity using the number from their official website, not the number in the message you received.”