1. Good move calling them first. That is always the right answer.
2. Bad move opening the attachment, even if you didn’t finish filling in everything.
3. It is absolutely essential that you do a full scan for viruses, malware, etc., as soon as possible, using high-quality software. It is quite possible that you infected your computer even if you didn’t directly hand over the information they want.
Note: “high-quality” is a debatable adjective, but I imagine you can get high-quality opinions on what to use right here if you don’t already have McAfee, Kaspersky, or one of the other big-name versions.
I used to get phishing emails from paypai.com.
In all caps, it looks legit — PAYPAI.COM — as the ‘I’ resembles an ‘L’ in some fonts.
It is a PHISH, delete and let AMEX know about it.
Depending on how the page is written, it may have been uploading your keystrokes in real time.
That's how Google does its real-time suggestions as you type a query. Google has already seen what you've typed and generated a list of logical completions and results for what you've typed so far.
Most of the time when your mouse cursor hovers over the “link” they are telling you to click, down at the bottom of your browser page will be the actual web address it will take you to. It usually looks weird.
Google “cryptolocker”.
Very, very nasty.
That’s quite likely what’s lurking in that file.
Be especially wary of any file attachment with a .zip or .pdf in the file name.
No wway that’s legit. Terrible writing, sounds like non-English speaker or low education.
Forward the email to their fraud hotline..... http://www.americanexpress.com/us/content/fraud-protection-center.html
No "probably" about it.
First, legit companies NEVER send this kind of e-mail.
Second, real e-mails from credit card companies usually get the spelling and grammar right. Scammers almost never do, and this example is no exception.
"on you account"? Are you kidding me?
"So we have decided to put an extra verification process"... "Put" an extra verification process? Who writes like that? Be vigilant and immediately delete every e-mail like this that you receive and NEVER click a link.
Don't think these will stop; thee phishers are persistent. I get three or four emails like this a day, and they can be very imaginative.
If you have the time, you can forward the e-mails to the fraud unit of whoever they are masquerading as, in this case American Express. Often the scammers are using hijacked servers - I got one that used the servers of a small community hospital in Minnesota, for example.
Another thing you might consider is supporting the death penalty for these scum when they are caught.
Write "you" congressman.
Thats a Phishing attempt if there ever was.Don’t reply to it at all.Just Trash it.
If your really concerned just call the Customer Service number on your account and verify your account info there.
I see a lot of these messages.The one thing about them is the bastards creating these letters are getting more creative so be careful out there.
It’s a fraud. The key is that they asked for all of your personal information. American Express already knows it.
You might want to look at (or copy for people here) the full header of your email. I’ll bet it isn’t from American Express.
Amex will call you if they are concerned about an account.
Get phone calls and emails all the time claiming there’s a problem with my credit card account - always a fraud unless they request you to contact a previously established number or email address already in your possession.....
Also, if they ever do call, you will be told by the agent to call them back at the toll free number on your card. Don’t ever disuss anything on the phone during an incoming call you didn’t expect to get. Same with an email.
Oh, you poor woman. How did you manage to post this to FR? You need to disconnect you computer ... forever.
100 percent, absolutely, positively a thief’s attempt.
IT'S A SCAM !
That right there tells you everything you need to know.
Surely you figured that out?