Phishing examples on Antiphishing.biz

Fake Walmart gift card

The fake Walmart gift card scam utilizes a survey-based phishing method to steal personal identification data and credit card information. This scheme lures victims with the promise of a $1000 gift card, ultimately using a fake “shipping fee” to harvest credit card CVV details for financial skimming.

These multiple screenshots show a classic “Walmart Gift Card Giveaway” scam, combined with a fake “online test” and “human verification” loop. The entire flow is designed to trick victims into completing surveys, providing personal information, or signing up for paid offers – with no gift card ever being delivered.

Threat Analysis: Walmart Gift Card Giveaway Scam – Survey / Lead Generation Fraud

How the scam works:

The Lure (Screenshots with Walmart gift cards)
The victim sees an ad or receives a link promising a free Walmart gift card ($25, $50, or $100). The page displays images of gift cards with “DIGITAL CODE” labels.
The “Choose Value” Page
The victim is asked to select a gift card value ($25, $50, or $100). This creates a sense of choice and personalization.
Fake “Connecting – Generating – Completed” Progress
A loading animation simulates a “generator” process, showing fake progress bars and messages like “Closing service handle…”
Anti‑Bot / Human Verification
The victim is told they need to complete a “human verification” to prove they are not a bot. A fake verification code is displayed.
“Take a FREE Survey to Become a Millionaire”
The victim is redirected to a page claiming they need to complete a survey or offer to unlock the gift card. This is the actual money‑making step for the scammers (affiliate fraud).
Fake Online Test (Multiple pages with questions)
The victim is taken through a series of questions about age, income, employment, financial goals, investment experience, etc. These questions are designed to profile the victim for targeted offers.
“Excellent” Test Result & Redirect
After answering all questions, the victim is told they scored “EXCELLENT” and can earn “MUCH MORE THAN $5,000 daily.” They are then redirected to paid offers, subscription traps, or data harvesting forms.

The goal:
The attacker earns money through:

Affiliate commissions – when victims sign up for paid offers, credit monitoring services, or loan applications
Lead generation – collecting personal data (name, email, phone, income level) to sell to marketers or other scammers
Credit card harvesting – if the final offers require payment details
Survey completion fees – each completed survey generates revenue for the scammer

Red flags to watch for:

Free gift card promise: Walmart does not give away gift cards through random online quizzes or “generators.”
Fake progress bars and verification codes: These are visual tricks to make the process seem technical and legitimate.
Endless loop of questions and offers: After completing one “verification,” victims are often asked to complete another, with no gift card ever received.
Requests for personal information (age, income, employment): These are not needed to claim a gift card.
Fake comments and timestamps: The “80 comments” section with generic usernames and “1 hour ago” timestamps is fabricated to create social proof.
Cookie notice: The presence of a cookie consent pop‑up is an attempt to look like a legitimate website.

What to do if you encounter this:

Do not click any buttons, answer any questions, or provide any personal information.
Do not enter any credit card details or sign up for any offers.
Close the page immediately. No legitimate gift card giveaway requires completing surveys or offers.
If you have already entered payment information, contact your bank immediately.

Protective measures:

Remember: if it seems too good to be true, it is a scam. Walmart does not give away free gift cards through random websites.
Never complete “human verification” offers – these are always scams designed to generate affiliate revenue or steal data.
Use an ad blocker to avoid such scam ads.
Do not trust fake comments – scammers can easily fabricate likes, replies, and timestamps.

Fake Steam digital gift card

A phishing campaign targeting Steam users with fake digital gift cards that steal credentials and 2FA codes for full account takeover. Scammers utilize realistic clones of the Steam login page and real-time Steam Guard code interception to hijack accounts and steal virtual items.

The “Steam Digital Gift Card” and “Walmart Gift Card” cases exemplify a “Reward Baiting” social engineering attack designed to steal user credentials through fake verification steps. By promising high-value rewards, scammers lure victims into entering login data on phishing sites to gain full account access.
Expert Security Tip: The “Free Reward” Verification Trap

The Trap: Attackers use convincing, high-quality landing pages to promise free $50-$100 gift cards, requiring users to complete “human verification” (surveys, app downloads) before stealing credentials via a fake login page.
Protection Method:
“No Free Lunch” Rule: Major brands do not offer high-value gift cards via third-party surveys; such offers are scams.
Verify Domain: Only trust official domains (e.g., steampowered.com); any variation is likely phishing.
Never Login via Reward Link: A requirement to log in to claim a gift is a direct credential theft attempt.
2FA Red Flag: Never enter a 2FA code (Steam Guard/SMS) to claim a reward, as this authorizes a hacker’s login.

Fake Spotify digital gift card

The fake Spotify digital gift card scam targets users with fraudulent, high-value offers, utilizing social engineering and fake login pages to steal account credentials and payment information. This campaign employs a survey-based approach that mimics official Spotify branding, often tricking users into providing credit card details for a fictitious “verification fee.”

This case highlights a reward-based credential harvesting tactic, where scammers leverage fake Spotify gift card promotions to steal user credentials through phony “human verification” steps. The scam uses, high-quality phishing sites to capture email and password combinations, emphasizing the need to verify domains and avoid logging in through third-party reward links.

Fake gift digital paysafecard

The fake paysafecard gift campaign uses a “Reward Generator” scam, promising high-value codes in exchange for “human verification” tasks to steal credentials and drive ad fraud. This social engineering tactic relies on fake “live chat” feeds and a “no free lunch” illusion to lure users into submitting personal data or authorizing third-party logins.

These screenshots show a Paysafecard giveaway scam, using the exact same “generator” and “human verification” template as the Walmart gift card scam. The victim is lured with promises of free digital codes for Paysafecard (a popular prepaid payment method), then trapped in an endless loop of surveys and offers.

Threat Analysis: Paysafecard Gift Card Generator Scam – Survey / Lead Generation Fraud

How the scam works:

The Lure – The victim sees an ad or link promising a free Paysafecard gift card (€25, €50, or €100). The page shows images of Paysafecard and “DIGITAL GIFTCARD” labels.
Choosing the Value – The victim is asked to select a card value, creating a sense of choice and personalization.
Fake “Connecting / Generating / Completed” Process – Animated progress bars simulate a code generator, showing messages like “Connected to safecard server…” to appear technical and legitimate.
Anti‑Bot / Human Verification – A fake verification step appears (“Anti-Bot – Complete a Human Verification”). The victim is asked to click “Verify Now” and is then told to complete an offer or survey to unlock the code.
“Take a FREE Survey to Become a Millionaire” – The victim is redirected to a page claiming they need to complete a survey or sign up for an offer. This is the actual money‑making step for the scammers (affiliate fraud).

The goal:
The attacker earns money through:

Affiliate commissions – each time a victim signs up for a paid offer, loan application, or subscription service
Lead generation – collecting personal data (name, email, phone, address) to sell to marketers
Credit card harvesting – if the final offers require payment details

No Paysafecard code is ever generated or delivered.

Red flags to watch for:

Free Paysafecard promise: Paysafecard does not give away codes through online generators. Any such offer is a scam.
Fake progress bars and verification steps: These are visual tricks to make the process seem real.
“Human Verification” redirecting to surveys: Legitimate verification does not require completing marketing offers.
No actual code displayed: After all steps, the victim never receives a valid Paysafecard code.
Poor design and generic “Connected to safecard server” messages: Official Paysafecard services use professional interfaces, not fake loading screens.

What to do if you encounter this:

Do not click any buttons, answer any questions, or provide any personal information.
Do not complete any surveys or offers.
Close the page immediately. No legitimate giveaway requires surveys or “human verification” offers.
If you have already entered payment information, contact your bank immediately.

Protective measures:

Remember: if it seems too good to be true, it is a scam. Paysafecard codes are bought, not given away through random generators.
Never complete “human verification” offers – these are always scams designed to generate affiliate revenue or steal data.
Only obtain Paysafecard codes from official retailers or the Paysafecard website.
Use an ad blocker to avoid such scam ads.

Fake iTunes digital gift card

Fake digital gift card generators for services like iTunes, Spotify, and paysafecard use “reward baiting” to drive victims toward “human verification” pages that steal login credentials and distribute malware. These social engineering tactics exploit user commitment to bypass critical thinking, requiring vigilance against fraudulent URLs and requests for account authentication.

These screenshots show an iTunes Gift Card generator scam, following the same template as the Walmart and Paysafecard scams. The victim is lured with promises of free iTunes codes, then trapped in a fake “human verification” loop that leads to paid surveys and affiliate offers.

Threat Analysis: iTunes Gift Card Generator Scam – Survey / Lead Generation Fraud

How the scam works:

The Lure – The victim sees an ad or link promising a free iTunes gift card ($25 or $50). The page displays iTunes gift card images with “DIGITAL GIFTCARD” labels.
Choosing the Value – The victim is asked to select a card value ($25 or $50), creating a sense of choice.
Fake “Connecting / Generating / Completed” Process – Animated progress bars simulate a code generator. A fake code (e.g., “EQ7L-AAL1-2THI-#####”) is displayed to make the scam seem real.
Anti‑Bot / Human Verification – The victim is told to complete a “human verification” by clicking “Verify Now.” This leads to a page asking the victim to complete an offer or survey.
“Take a FREE Survey to Become a Millionaire” – The victim is redirected to survey pages or paid offer walls. This is where the scammer earns affiliate commissions.

The goal:
The attacker earns money through:

Affiliate commissions – each time a victim signs up for a paid offer, subscription, or loan application
Lead generation – collecting personal data (name, email, phone, address) to sell to marketers
Credit card harvesting – if the offers require payment details

No iTunes gift card code is ever generated or delivered. The fake code displayed on the page is invalid.

Red flags to watch for:

Free iTunes gift card promise: Apple does not give away iTunes codes through online generators.
Fake progress bars and verification steps: These are visual tricks to mimic a legitimate process.
“Human Verification” redirecting to surveys: Real verification does not require completing marketing offers.
The same template as known scams: Identical layout to the Walmart and Paysafecard scams confirms it is fraudulent.

What to do if you encounter this:

Do not click any buttons, answer questions, or provide personal information.
Do not complete any surveys or offers.
Close the page immediately.
If you have already entered payment information, contact your bank immediately.

Protective measures:

Remember: legitimate gift cards are purchased, not generated.
Never complete “human verification” offers – these are always scams.
Only obtain iTunes gift cards from Apple, the App Store, or authorized retailers.
Use an ad blocker to avoid such scam ads.

Fake eBay gift card

These screenshots show an eBay Gift Card generator scam, using the exact same template as the previous Walmart, Paysafecard, and iTunes scams. The victim is promised a free eBay gift card ($25, $50, or $100), then trapped in a fake “human verification” loop that leads to paid surveys and affiliate offers.

Threat Analysis: eBay Gift Card Generator Scam – Survey / Lead Generation Fraud

How the scam works:

The Lure – The victim sees an ad or link promising a free eBay gift card. The page displays eBay gift card images with “DIGITAL GIFT CARD” and “DIGITAL CODE” labels.
Choosing the Value – The victim is asked to select a card value ($25, $50, or $100), creating a sense of choice.
Fake “Connecting / Generating / Completed” Process – Animated progress bars and fake technical messages (“Sending stage (2342323 bytes) to 192.23.11.164”) simulate a code generator. A fake code (e.g., “OP4-N2X-55E-####”) is displayed to make the scam seem real.
Anti‑Bot / Human Verification – The victim is told to complete a “human verification” by clicking “Verify Now.” This leads to a page asking the victim to complete an offer or survey.
Survey / Offer Walls – The victim is redirected to paid surveys, subscription offers, or data collection forms. This is where the scammer earns affiliate commissions.

The goal:
The attacker earns money through:

Affiliate commissions – each time a victim signs up for a paid offer, subscription, or loan application
Lead generation – collecting personal data (name, email, phone, address) to sell to marketers
Credit card harvesting – if the offers require payment details

No eBay gift card code is ever generated or delivered. The fake code displayed is invalid.

Red flags to watch for:

Free eBay gift card promise: eBay does not give away gift cards through online generators.
Fake progress bars and technical messages: These are visual tricks to mimic a legitimate process.
“Human Verification” redirecting to surveys: Real verification does not require completing marketing offers.
Identical template to known scams: The same layout as Walmart, Paysafecard, and iTunes scams confirms it is fraudulent.

What to do if you encounter this:

Do not click any buttons, answer questions, or provide personal information.
Do not complete any surveys or offers.
Close the page immediately.
If you have already entered payment information, contact your bank immediately.

Protective measures:

Remember: legitimate gift cards are purchased, not generated.
Never complete “human verification” offers – these are always scams.
Only obtain eBay gift cards from eBay or authorized retailers.
Use an ad blocker to avoid such scam ads.

Fake Bestbuy gift card

This screenshot shows a Best Buy Gift Card generator scam, using the identical template as the previous Walmart, iTunes, eBay, and Paysafecard scams. The victim is promised a free Best Buy gift card ($25, $50, or $100) and then trapped in a fake “human verification” loop leading to paid surveys and affiliate offers.

Threat Analysis: Best Buy Gift Card Generator Scam – Survey / Lead Generation Fraud

How the scam works:

The Lure – The victim sees an ad or link promising a free Best Buy gift card. The page displays Best Buy gift card images with “DIGITAL GIFTCARD” and “DIGITALCODE” labels.
Choosing the Value – The victim is asked to select a card value ($25, $50, or $100), creating a false sense of choice.
Fake “Connecting / Generating / Completed” Process – Animated progress bars and a fake code (e.g., “1HHM-C8FR-VOCS-9QJ0-####” or “W9DN-DLH8-HUXE-CI4L-8FBG”) are displayed to simulate a working generator.
Anti‑Bot / Human Verification – The victim is told to complete a “human verification” by clicking “Verify Now.” This is the key trap.
“Take a FREE Survey to Become a Millionaire” – The victim is redirected to survey pages or paid offer walls. The scammer earns affiliate commissions for each completed survey or sign‑up.

The goal:
The attacker earns money through:

Affiliate commissions – each time a victim signs up for a paid offer, subscription, or service
Lead generation – collecting personal data (name, email, phone, etc.) to sell
Credit card harvesting – if any offers request payment details

No Best Buy gift card code is ever generated or delivered. All displayed codes are fake.

Red flags to watch for:

Free Best Buy gift card promise: Best Buy does not give away gift cards through online generators.
Fake progress bars and technical messages: These are visual tricks to mimic a legitimate process.
“Human Verification” redirecting to surveys: Real verification never requires completing marketing offers.
Identical template to known scams: Same layout as Walmart, eBay, iTunes, and Paysafecard scams.
Suspicious domain: The URL contains generator.cc – a classic sign of a scam site.

What to do if you encounter this:

Do not click any buttons, answer questions, or provide personal information.
Do not complete any surveys or offers.
Close the page immediately.
If you have already entered payment information, contact your bank immediately.

Protective measures:

Remember: legitimate gift cards are purchased, not generated.
Never complete “human verification” offers – these are always scams.
Only obtain Best Buy gift cards from Best Buy stores, their official website, or authorized retailers.
Use an ad blocker to avoid such scam ads.

Fake Amazon gift card

This phishing scam uses a fake “Free Amazon Gift Card” offer, often promoted on social media, to lure users into a multi-step, fraudulent process. Victims are directed through a fake survey and a “win-the-prize” game to a phishing site that steals Amazon login credentials and, in some cases, credit card information. To protect yourself, always verify that the website URL is legitimate and avoid clicking on unsolicited links promising free, high-value rewards.

This series of screenshots shows a complete Amazon Gift Card scam chain – from the initial “generator” lure to the fake survey and “reward” promises. The entire flow is designed to trick victims into completing paid offers, sharing personal data, and generating affiliate revenue for the scammers. No gift card is ever delivered.

Threat Analysis: Amazon Gift Card Generator & Survey Scam – Affiliate Fraud / Lead Generation

How the scam works (step by step):

The Lure – Free Amazon Gift Card
The victim sees an ad or link promising a free Amazon gift card ($25, $50, or $100). Pages show Amazon branding and “DIGITAL GIFT CARD / DIGITAL CODE” labels.
Choosing the Value
The victim selects a gift card amount. This creates a false sense of personalization.
Fake “Connecting / Generating” Progress
Animated progress bars simulate a code generator. Fake codes (e.g., “6XZN-W3S2JO-####”) and fake technical messages (“connected to PayPal server…”) make the scam seem real.
“Human Verification” or “Anti‑Bot” Step
The victim is told to complete a “human verification” by clicking a button. This is the key trap.
Survey / Offer Wall
Instead of a verification, the victim is redirected to a page claiming they need to complete “one offer from the list below” or “take a FREE survey to become a millionaire.” These are paid offers, subscription forms, or lead generation forms.
Fake Promotional Contest / Quiz
The victim is told they have been randomly selected for a contest. A countdown timer creates urgency. Questions about shopping habits, gender, age, income, and financial goals are asked – all to profile the victim for targeted offers.
“Pick a Gift Box” Game
A fake “choose the right box” game appears. When the victim picks a box, they are told “The boxes are empty” but still have a chance to win by completing more offers.
“Congratulations! You scored GREAT!”
After answering all questions, the victim receives a flattering result (“EXCELLENT” or “GREAT”) and is told they can earn “MUCH MORE THAN $5,000 daily.” They are then redirected to paid offers, loan applications, or “money making” schemes.

The goal:
The attacker earns money through:

Affiliate commissions – each time a victim signs up for a paid offer, credit monitoring service, or subscription
Lead generation – collecting personal data (name, email, phone, address, income, age) to sell to marketers
Credit card harvesting – if any offers ask for payment details

No Amazon gift card code is ever generated or delivered. All codes shown are fake.

Red flags to watch for:

Free gift card promise: Amazon does not give away gift cards through online generators or surveys.
Fake progress bars and technical messages: Real code generation does not exist.
“Human Verification” leading to surveys: Legitimate verification never requires completing paid offers.
Countdown timers and “limited spots”: Classic urgency tactics.
Fake comments and likes: The “80 comments” and usernames like “Kelly Stone” are fabricated to create social proof.
Redirecting to external offer walls: The final step is always a paid offer or data collection form.

What to do if you encounter this:

Do not click any buttons, answer questions, or provide personal information.
Do not complete any surveys or offers.
Close the page immediately. You will never receive a gift card.
If you have already entered payment information, contact your bank immediately.

Protective measures:

Remember: legitimate gift cards are purchased, not generated.
Never complete “human verification” offers – these are always scams.
Only obtain Amazon gift cards from Amazon or authorized retailers.
Use an ad blocker to avoid such scam ads.
Ignore fake comments and countdown timers – they are designed to pressure you.

Fake XBOX gift card

This screenshot shows an Xbox / Microsoft Gift Card generator scam, following the same template as the previous Amazon, eBay, and Walmart scams. The victim is promised a free Xbox gift card ($25, $50, $70, or $100) and then forced to complete offers or surveys – with no card ever delivered.

Threat Analysis: Xbox Gift Card Generator Scam – Survey / Offer Fraud

How it works:

The Lure – The victim sees an ad or link promising a free Xbox gift card. The page displays Xbox/Microsoft gift card images with “DIGITAL CODE” labels and fake code examples.
Choosing the Value – The victim selects a card amount ($25, $50, $70, or $100). This creates a false sense of personalization.
Fake Code Display – A fake code (e.g., “2TDN-ZRLO-GME9-YEC7-#####”) is shown to make the scam appear real.
“Unlock Now!” and Offer Wall – The victim is told to complete “one offer” or “take a FREE survey to become a millionaire” to unlock the code. This redirects to paid offers, subscription forms, or lead generation pages.

The goal:
The attacker earns money through:

Affiliate commissions – each time a victim signs up for a paid offer or service
Lead generation – collecting personal data (name, email, phone) to sell
Credit card harvesting – if offers ask for payment details

No Xbox gift card code is ever generated or delivered.

Red flags:

Free gift card promise: Microsoft / Xbox does not give away cards through online generators.
Fake code displayed: The code format is generic and invalid.
“Complete one offer to unlock”: Legitimate gift cards do not require surveys or offers.
Suspicious domain: unlock3r.net is not an official Microsoft domain.

What to do:

Do not click any buttons, complete offers, or provide personal information.
Close the page immediately.
If you have already entered payment details, contact your bank.

Protective measures:

Only obtain Xbox gift cards from Microsoft, Xbox, or authorized retailers.
Never complete “human verification” or “unlock” offers – these are always scams.
Use an ad blocker to avoid such scam ads.

Fake PlayStation gift card

This set of screenshots shows a PSN (PlayStation Network) Gift Card generator scam, using the same template as the previous Xbox, Amazon, and other “free gift card” scams. The victim is lured with promises of free PSN vouchers ($15, $25, $50, or $100) and then forced to complete surveys or offers – with no code ever delivered.

Threat Analysis: PSN Gift Card Generator Scam – Survey / Offer Fraud

How the scam works:

The Lure – The victim sees an ad or link promising a free PSN gift card. The page displays PlayStation gift card images and fake “Recent Activity” messages (e.g., “User with IP: 65.2.36.1 is verifying for 350 Gift Card Code…”).
Choosing the Value – The victim selects a card amount ($15, $25, $50, or $100). This creates a false sense of personalization.
Fake Technical Progress – The page shows fake “connecting to server” messages (# Connecting to PSN Server…, # Server is up, # Meterpreter session, etc.) and displays a partial fake code (e.g., “E62U 4GMF 2FPF”). These are designed to mimic a real code generator.
“Complete 2 Offers” / Survey Wall – After the fake progress, the victim is told “Complete 2 Offers down below, and your Prize will unlock automatically” or “Take a FREE Survey to Become a Millionaire Now!” This redirects to paid offers, subscription forms, or lead generation pages.
“Complete A Sponsor Activity” – The final step always requires the victim to complete a “sponsor activity” (survey, app download, or registration). The scammer earns affiliate commissions for each completed action.

The goal:
The attacker earns money through:

Affiliate commissions – each time a victim signs up for a paid offer, service, or subscription
Lead generation – collecting personal data (name, email, phone, etc.) to sell
Credit card harvesting – if any offers ask for payment details

No PSN gift card code is ever generated or delivered. Any displayed codes are fake and invalid.

Red flags to watch for:

Free PSN gift card promise: Sony / PlayStation does not give away codes through online generators.
Fake technical messages: Legitimate code generation does not exist. The “Meterpreter” and “port 445” references are copied from hacking tools to look impressive but are completely unrelated.
“Complete offers to unlock”: A real gift card never requires surveys or offers.
Suspicious domain: unlock3r.net is not an official PlayStation domain.
Fake “Recent Activity”: The IP address and verification messages are fabricated.

What to do if you encounter this:

Do not click any buttons, complete offers, or provide personal information.
Close the page immediately.
If you have already entered payment details, contact your bank.

Protective measures:

Only obtain PSN gift cards from PlayStation Store, official retailers, or authorized resellers.
Never complete “human verification” or “sponsor activity” offers – these are always scams.
Use an ad blocker to avoid such scam ads.