spozod just signed itself on my phone and computer when I was trying to download Kindle app. They emailed that I have a membership and must cancel in 2 days or credit card will be charged. I do not want to sign into site to cancel. What should I do.

Where were you downloading the Kindle app from? It is possible that the download came along with additional offers, in this case spozod. If you did not see and uncheck the optional download, that would be how you got the extra app.

Did you enter your credit card information anywhere during this download transaction?

Did the email you received come from @ spozod dot com ?

It appears you have encountered a subscription scam. Scammers often use urgent language and fake “membership” emails to trick users into providing payment details or logging into malicious sites.

Since you do not want to log into their site—which is a wise precaution to avoid further data theft or malware—take the following steps immediately:

Protect Your Financial Accounts

• Contact Your Bank or Card Issuer: Report the transaction or “membership” as fraudulent.
• Request a New Card: If you entered your credit card details on a suspicious site, the scammers may now have your information. Ask your bank to cancel your current card and issue a new one with a different number to prevent future unauthorized charges.
• Place a “Stop Payment”: Specifically request your bank to block any future charges from “Spozod”.

Verify Your Actual Subscriptions

• Check Amazon Directly: If you were trying to download the Kindle app, ensure you didn’t accidentally sign up for Kindle Unlimited. You can verify this by visiting your Amazon Memberships & Subscriptions page.
• Official Downloads Only: Only download the Kindle app from official sources like the Amazon Website, Apple App Store, or Google Play Store to avoid malicious clones.

Handle the Fraudulent Email

• Do Not Click Links: Avoid clicking “Cancel” or “Unsubscribe” buttons within the Spozod email, as these links often lead to phishing sites designed to steal more data.
• Do Not Reply: Responding confirms your email address is active, which can lead to more spam and targeted attacks.
• Report the Scam: You can report the fraudulent business to the Better Business Bureau (BBB) to help warn others.

Secure Your Devices

• Scan for Malware: Since you mentioned this happened on both your phone and computer, run a security scan using reputable antivirus software to ensure no malicious files were installed during the download attempt.

Spozod is currently listed on the Better Business Bureau as a non-accredited business.

=====================================

There is an entire ecosystem of faux download sites designed to impersonate official platforms like Kindle to trap users in “zombie” subscriptions or install malware.

These sites use several deceptive tactics to trick you:

• Search Engine Poisoning: Scammers pay for ads or use SEO tricks so their fake “Kindle Download” pages appear at the top of Google results.
• The “Free” Trap: They often lure users with promises of free bestselling books or “lifetime” access that doesn’t actually exist on the official app.
• Deceptive Membership Links: During the download process, they hide a “membership” agreement (like Spozod) in the fine print. By clicking “Download,” you unknowingly “agree” to a recurring credit card charge.
• Mimicked Branding: They use official logos, similar color schemes, and slightly misspelled URLs (e.g., kindle-app-download.com instead of amazon.com to look legitimate.
• Bundleware/Malware: The “installer” you download often contains the real Kindle app bundled with hidden scripts that monitor your data or redirect your browser to other scam sites.

How to Spot the Fakes
Legitimate Amazon Kindle downloads will never require a separate “membership” fee or a credit card entry just to download the free app. Official Amazon emails will also always come from an @amazon.com domain and can be verified in your Amazon Message Center.

Since you mentioned you downloaded this to both your phone and computer, did you notice any new icons or pop-ups appearing since the installation?

Note: AI sourced content may include mistakes

Unfortunately I entered my credit card and password thinking it was Kindle. The email came from “spozod” <no-reply@guardsafer dot com. That is when I realized that I was in trouble. I tried calling the phone number that was in the email, using *69 before the number, it was generic customer service for a lot of sites. They said they need my name and the last 4 digits of my credit card to look up my order; I disconnected the call. I will cancel my credit card, report the fraud charge and change all of the passwords. I will also run a scan with Norton. I downloaded the app fromamaz-kndl.app-loader dot com app-loader dot com. Again a mistake. There are no new apps on my phone or computer.

Is there anything else I need to do? Thank you so much for your help.

https://amaz-kndl.app-loader.com/

image1920×741 84.5 KB

=================================

https://amaz-kndl.app-loader.com/detail/com.amazon.kindle.html

image1824×1198 170 KB

==================================

image678×128 27.7 KB

https://amaz-kndl.app-loader.com/disclaimer.html

====================================

image565×333 79 KB

image562×295 86.8 KB

=====================================

The email address no-reply@guardsafer.com is a “no-reply” address, which means it is designed for outgoing automated messages only and cannot receive incoming mail.

While guardsafer.com does not appear to be a major public-facing consumer brand, these addresses are typically used for:

• System Notifications: Alerts or updates from a specific software or service.
• Security Alerts: Notifications regarding account logins or security changes.
• Verification Codes: Delivering one-time passwords (OTPs) for account access.

Important Security Precautions
If you received an unexpected email from this address:

• Do Not Reply: Messages sent to this address will likely go unread or bounce back.
• Verify the Sender: Scammers often “spoof” email addresses to look legitimate. Check the “Reply-To” or “Return-Path” in the email headers to ensure it actually originates from that domain.
• Avoid Suspicious Links: Do not click links or download attachments if you did not request a message from a service associated with “guardsafer”.
• Research the Domain: If you are unsure what the service is, check your recent account registrations or browser history for “guardsafer” to see if it is a tool or platform you recently used.

===================================

The domain guardsafer.com is a private web domain that does not appear to host a major public website or well-known service. It is often associated with the email address no-reply@guardsafer.com, which typically sends automated notifications or verification codes.

Because this domain is not a recognizable brand, messages from it should be handled with caution:

• Verify Context: If you recently signed up for a new software, security app, or industrial service, this email may be a legitimate part of their automated system.
• Check for Spoofing: Ensure the sender is actually guardsafer.com and not a slightly different spelling, which is a common tactic in phishing scams.
• Security Alert: If you received an unsolicited code or login alert from this address, it may indicate someone is trying to access an account linked to your email.

=====================================

It sounds like you have already taken several of the most critical steps to mitigate the damage. This specific “Spozod” Kindle scam is a known phishing tactic designed to steal credentials and financial data.

Beyond canceling your card and changing passwords, here are the remaining high-priority actions you should take:

1. Protect Your Identity & Credit
   Since you provided sensitive information, scammers may try to use your identity beyond just the credit card you cancelled.

• Place a Fraud Alert: Contact one of the three major credit bureaus to place a free fraud alert on your credit report.
  • Equifax: 1-800-525-6285
  • Experian: 1-888-397-3742
  • TransUnion: 1-800-680-7289
• Consider a Credit Freeze: For even stronger protection, you can freeze your credit at all three bureaus. This prevents anyone (including you) from opening new credit accounts until you unfreeze it.
• Report the Theft: File an official report at IdentityTheft.gov (FTC) to create a personalized recovery plan.

2. Verify Your Device for “Ghost” Apps
   The site you mentioned (app-loader dot com) often attempts to download “ghost” applications or profiles that don’t appear on your home screen but can track your activity.

• Check for Configuration Profiles (iPhone): Go to Settings > General > VPN & Device Management. If you see any profiles you didn’t install yourself, delete them immediately.
• Check Full App List:
  • iPhone: Go to Settings > General > iPhone Storage. Look through every app in the list for anything unfamiliar.
  • Android: Go to Settings > Apps > See all apps. Look for apps with generic names (like “Update” or “System”) or those with no icon.
• Clear Browser Data: Scammers sometimes use malicious cookies to stay logged into your sessions. Clear your cache and cookies in all browsers.

3. Secure Your Amazon Account
   If the scam specifically targeted Kindle, you must ensure your real Amazon account is locked down.

• Sign Out Everywhere: In your Amazon account settings, go to “Login & Security” and choose the option to sign out of all devices and apps.
• Enable 2FA: If you haven’t already, enable Two-Factor Authentication (2FA) on your Amazon and email accounts to prevent future login attempts even if they have your new password.
• Check “Your Orders”: Look for any unauthorized digital purchases or physical shipments in your Amazon order history.

4. Official Reporting

• Report to Amazon: Forward the phishing email to reportascam@amazon.com.
• Report to the FBI: Submit a complaint to the Internet Crime Complaint Center (IC3)

========================================

While there is no record of a specific phishing tactic by the name “Spozod,” it aligns with several high-profile Amazon Kindle phishing scams documented in 2025 and early 2026. These tactics frequently involve scammers masquerading as Amazon or Kindle Support to steal account credentials and payment data.

Common indicators of these phishing tactics include:

• Fake Refund Texts: Unexpected messages claiming an item you bought was recalled or failed a “quality inspection,” offering a refund via a malicious link.
• Account Issue Alerts: Fraudulent emails or texts claiming your Kindle account is on hold or has “unusual activity,” pressuring you to “verify” your info on a fake login page.
• Hidden “Membership” Fees: Sites selling heavily discounted Kindle books that automatically add a recurring $40 monthly membership to your cart, which cannot be removed.
• QR Code Scams: Unexpected physical packages containing a product and a QR code. Scanning the code can install malware or steal digital wallet details.
• Impersonation: Scammers use fake sender names (e.g., “Kindle Amazon Publishings”) and logos to trick users into sharing bank or tax information.

How to Verify and Protect Your Data

• Check the Message Center: Legitimate Amazon communications will always appear in your Amazon Message Center.
• Verify Sender URLs : Official Amazon sites use a dot before “amazon.com” (e.g., https://kdp.amazon.com). Avoid links with typos or those that use IP addresses.
• Report Suspicious Activity: Forward any suspicious emails as an attachment to reportascam@amazon.com or use the Amazon Scam Reporting tool.
• Secure Your Account: Enable two-step verification on your Amazon account to prevent unauthorized access even if your password is stolen.

===========================================

While “Spozod” itself is not explicitly listed in major consumer protection databases as a standalone entity, the Kindle phishing tactics it utilizes are well-documented by Amazon Customer Service and the FTC. These scams often impersonate Amazon Kindle Direct Publishing (KDP) or general Amazon support to harvest sensitive information.

Common Phishing Tactics Used in Kindle Scams

• Account Issue Alerts: You receive a message or email claiming there is a problem with your account that requires immediate action to prevent suspension.
• Fake Publishing Services: Scammers often use websites with misleading names and URLs that replicate the look of Amazon Publishing to trick authors into paying for non-existent services.
• Credential Harvesting: Victims are directed to fraudulent login pages designed to steal their Amazon usernames and passwords.
• Financial Data Theft: Scammers may ask for credit card numbers, bank account details, or even payment via gift cards under the guise of “verifying” your account.

Red Flags to Identify Phishing Attempts

• Sender Address Discrepancies: Official Amazon emails come from addresses ending in @amazon.com. Be wary of subtle misspellings or added characters.
• Urgent or Threatening Language: Messages that create a false sense of urgency to bypass your critical thinking are a primary indicator of a scam.
• External Links: Amazon will never ask you to provide a password or payment details via a link in an email; they direct you to the official Amazon Message Center.

If you have encountered a suspicious “Spozod” communication, you can report it directly to Amazon by forwarding the message to reportascam@amazon.com.

Note: AI sourced content may include mistakes

Thank you so much!