is that a scam?
← Back to all scams
HIGH phishing Share

Fake Amazon product recall text says your recent purchase is unsafe — click here to refund

A text impersonating Amazon, Walmart, or Costco claims a recent purchase was recalled for safety reasons and offers a link to process your refund. The link leads to a fake login page that harvests your account credentials and payment details.

Also known as: fake Amazon recall text, product recall phishing text, Amazon safety recall SMS scam, fake Walmart recall text, retail recall smishing

What to do right now

  1. 1 Do not click the link — delete the text immediately
  2. 2 Go directly to the Amazon app or amazon.com and check the 'Your Recalls and Product Safety Alerts' section under Account to see any legitimate recall notices
  3. 3 If you clicked and entered your Amazon password, change it immediately at amazon.com/a/settings/approval and check your order history for unauthorized purchases
  4. 4 Verify real product recalls at https://www.cpsc.gov/Recalls (Consumer Product Safety Commission) or at recalls.gov
  5. 5 If you entered a payment card number on the fake site, call your card issuer immediately to dispute charges and get a new card
  6. 6 Report to the FTC at https://reportfraud.ftc.gov and the FBI's IC3 at https://www.ic3.gov.

Red flags

  • Amazon does not notify customers of product recalls by text message — real recall notices arrive by email and are visible in the 'Your Recalls and Product Safety Alerts' section of your Amazon account
  • The product description is deliberately vague ('an item from your recent order') so almost any Amazon shopper might believe it applies to them
  • The text creates urgency around safety ('recalled for your protection') to prompt immediate action before you think to verify
  • The link uses a URL shortener or an unofficial domain — not amazon.com — to hide its true destination
  • Clicking the link leads to a fake Amazon-lookalike login page or a survey loop that collects your credentials and device fingerprint

Known variants

  • July 4th and summer holiday smishing campaign: texts impersonate Costco, Publix, Target, and Walmart with 'Fourth of July Flash Sale' or 'Holiday Appreciation Gift' offers. Links go to fake shopping sites that harvest card numbers. Bitdefender tracked this wave starting July 1, 2026 targeting CA, FL, GA, AL, and TX.

    Last seen: 7/4/2026

Sources

Share this with someone who might need it