In a credit card email scam, you receive an email that appears to be from your credit card company. The email reports a theft or other problem with your account and directs you to click on a link to access your account. Once you click on the link you're taken to a site that looks like your credit card's website. If you log into the site, the thief has captured your login information and may use it to get access to your account. (Some emails direct you to call a customer service number listed in the email.)
How to Avoid It:
Avoiding credit card email scams is relatively easy. Don't click on links inside emails, no matter how urgent the email seems even if they appear to be legitimate emails. Instead, go directly to your creditor's website to access your account.
If you accidentally click a link from a credit card email scam, don't enter your login information on the website, even if it looks just like the creditor's real website. Close the internet browser and clear your cookies
to prevent the scammer from getting access to your account.
When It Happens To You:
If you mistakenly enter personal information on a scammer's site, leave immediately. Visit the credit card's real website to change your login information. If you use the same login for other websites, change those logins, too.
Let your creditor know you accidentally entered your information into a scammer's website. You may be asked for the website or a copy of the email.
Watch your credit card statement closely and let your creditor know if you see charges you didn't make. Under federal law, you won't be liable for charges made with stolen credit card information (vs. a physically stolen credit card).