Phishing is an attempt to steal your confidential information — such as your user name, password, or One Time Password via an email or other direct communication. A hacker can fake sender information, tricking you into believing the message is from Amazon, while directing you to another website that is designed to steal your account information. Amazon takes this issue very seriously, and to make it easy to identify phishing attempts, we will never ask you to verify sensitive information over email.
If you are asked to follow a link, you can check the web address to ensure the site is legitimate before entering your information. Genuine Amazon websites always end with "amazon.com," "amazonsellerservices.com," or "sellercentral.amazon.com." While domains can appear legitimate at first glance, Amazon will never ask you to log in to a website other than "amazon.com," "amazonsellerservices.com," or "sellercentral.amazon.com." Please also note that if you receive emails about your account health, you can check the Account Health page in Seller Central to confirm their legitimacy.
Whenever in doubt, go directly to Amazon or the Seller Central website in your web browser and send any suspicious emails you receive to firstname.lastname@example.org