Amazon Prime Day has kicked off with millions of deals, including Apple items discounted as much as 25%. While shoppers chase low prices, security researchers warn that the event’s hype fuels a wave of fraud. Nearly 7,000 counterfeit Amazon domains were registered in the six months before the sale, many mimicking official storefronts.

Check Point Research tracked 6,843 new domains from December 2025 through May 2026, deploying phishing kits that harvest credit‑card numbers, spoof login pages, and send emails titled “Refund Due, Amazon System Error.” One campaign used a sender address closely resembling Amazon’s customer‑service domain, slipping past casual inspection and directing victims to fake checkout pages.

Consumers should treat any unsolicited Amazon link with suspicion; legitimate Amazon pages never ask Prime members to re‑enter card details. Refund emails will prompt users to choose the original payment method or an Amazon gift card, never to supply personal data. Ignoring these cues protects shoppers from losing money during what should be a bargain‑driven shopping weekend.

Staying within the official Amazon app or verified website remains the safest route, ensuring discounts apply without exposing personal or financial information to fraudsters.