In breve
A live phantom invoice / refund scam is impersonating PayPal, Amazon, and Geek Squad with fake receipts for charges (e.g. $349, $499, $598) that never happened. The email's only goal is to scare you into calling a bogus "support" number,...
Come funziona
A live phantom invoice / refund scam is impersonating PayPal, Amazon, and Geek Squad with fake receipts for charges (e.g. $349, $499, $598) that never happened. The email's only goal is to scare you into calling a bogus "support" number,...
Indicatori rossi
- An unexpected invoice or renewal notice for a charge you don't recognize, with a callback number to "cancel" it. Urgent, fear based language pushing you to act fast without verifying directly with the vendor. No real attachment or link to analyze, which is exactly why the message often bypasses spam filters
Cosa fare
- 1Do not call the number in the email. Log in directly to the official PayPal/Amazon/etc. site (or open the real app) to check any charge. If you already called and followed instructions: run a full antivirus scan, change critical passwords, enable multi factor authentication (MFA), and contact your bank to monitor or block your card. Report the message as phishing, then delete it
- 2real companies never resolve disputes through unsolicited phone
Fonte
malwarebytes
Fonte verificata da Mythos Forensic Team
https://www.malwarebytes.com/blog/threat-intel/2026/06/we-found-this-fake-invoice-campaign-while-scammers-were-still-building-itFAQ
Phantom invoice scam caught mid rollout: PayPal, Amazon and Geek Squad impersonations push victims to call scammer phone numbers e una truffa reale?
Si. Tratta messaggi, chiamate o richieste di pagamento come sospette finche non le verifichi da un canale ufficiale.
Quali sono i primi segnali?
An unexpected invoice or renewal notice for a charge you don't recognize, with a callback number to "cancel" it. Urgent, fear based language pushing you to act fast without verifying directly with the vendor. No real attachment or link to analyze, which is exactly why the message often bypasses spam filters
Cosa devo fare subito?
Do not call the number in the email. Log in directly to the official PayPal/Amazon/etc. site (or open the real app) to check any charge. If you already called and followed instructions: run a full antivirus scan, change critical passwords, enable multi factor authentication (MFA), and contact your bank to monitor or block your card. Report the message as phishing, then delete it; real companies never resolve disputes through unsolicited phone
LegalAudit puo controllare il mio caso?
Si. Apri la chat gratis e incolla messaggio, link, mittente o dati di pagamento per un triage.