Has Amart Furniture Been Hacked. Again?

t_c on 26/07/2022 - 17:19
Last edited 27/07/2022 - 10:17 by 1 other user

Just received this email 5:09pm 26/7/22 from [email protected]

Our accounting system has detected that you have paid GST twice on your last order.
Please be advised that you are entitled to receive of $63.55 GST.

Click the link below and follow up refund process

https://www.amartfurniture.com.au/refund/double?token=X1WZN0…

Please note that the refund link will be valid only for 48 hours.

This is an automatically generated email, please do not reply.

Looks like it came from their legit email address so I clicked the link but it goes here
https://www.le-petit-cochon.net/wp-includes/httpswwwamartfur…

How did they manage to send it from the amartfurniture.com.au domain name?

Internet

Related Stores

Amart Furniture
Amart Furniture

Comments

  • Hybroid on 26/07/2022 - 17:22
    +4

    You can spoof e-mail addresses very easily. Been a thing for couple decades.

  • steven6 on 26/07/2022 - 19:39

    Just a few questions.
    1. Have you previously given Amart your email address?
    2. Have you recently made a purchase from Amart using this email address?

    • t_c on 27/07/2022 - 08:51
      +1
      1. Yes
      2. No
  • NotJustChickenDinner on 26/07/2022 - 20:09
    +9

    thanks just clicked the link and got your $63.55 . too slow buddy!

  • adam on 26/07/2022 - 22:48
    +1

    email can be spoofed trivially, so the source address means nothing.

    The URL is a little bit more confusing… but when a URL is posted it contains a text portion and then a portion that says where that text should go to when you click it. In the case of the amartfurniture link in the email they would have the text portion be the amartfurniture URL (as you've copied and pasted it above) but the URL portion (which doesn't get copied/pasted into this forum) would point to the URL that you ended up at. A bit like this: https://www.google.com

    • t_c on 27/07/2022 - 09:05

      I think this is the first time I've had a scam come from a legit email. They always come from dodgy email addresses, which make them very easy to pick out. someone must be getting smarter?

      This was the link that it goes to if right clicking the link text in the email, with the safelinks and amart in there, looks legit at first glance.

      "https://nam12.safelinks.protection.outlook.com/?url=https%3A%2F%2Fwww.le-petit-cochon.net%2Fwp-includes%2Fhttpswwwamartfurniturecomau%2Fa%2F&data=05%7C01%7C%7Ccd6d59dd6dea4cc5a5c708da6ed5c45e%7C84df9e7fe9f640afb435aaaaaaaaaaaa%7C1%7C0%7C637944161650783060%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C3000%7C%7C%7C&sdata=FSA%2FZ%2BXcshppIn8ehLPNxNFMf6%2Bte9KbU3bKXKltWRY%3D&reserved=0"

  • tfb on 04/08/2022 - 23:36

    Got the same email today. Did you make a warranty claim at some point?

    https://www.itsecuritynews.info/amart-furniture-108940-breac…

  • Omerfs on 05/08/2022 - 16:57

    So what happened after u opened the link ? Is it virus ? I did that on my phone it warned me for the website so I didn’t proceed

Login or Join to leave a comment
Login Join