Hackers are employing Google Drawings and WhatsApp in a new phishing attack targeting Amazon account credentials.

The attack initiates with a phishing email that prompts the victim to click a link, claiming to verify their Amazon account due to 'unusual activity.'

This link directs users to a graphic that mimics an Amazon account verification page, hosted on Google Drawings to bypass security measures.

Upon clicking, users are redirected to a fake Amazon login page via a WhatsApp URL shortener that disguises the true destination.

The verification link leads to a Google Drawings graphic, which many security tools do not block, making it harder to detect.

Attackers benefit from using legitimate services, which are less likely to be blocked by security products, allowing for clandestine communication.

The malicious site presents a fake security checkup process, requesting sensitive information such as date of birth and phone number.

Victims are then led to a billing confirmation page, where they enter their billing address and full payment card information, including the security code.

The fraudulent page collects users' credentials, personal information, and credit card details before redirecting them to the genuine Amazon login page.

Even if users notice something suspicious, the hackers have already collected previous data before returning them to the original login page.

Once credentials are validated, the fake page becomes inaccessible from the same IP address to protect the attackers' identity.

The Federal Trade Commission offers practical anti-phishing advice that is recommended for users to read for further protection.