Amazon Hit With Major Data Breach Days Before Black Friday
Source: The Guardian
13.25 EDT. Customers names and email addresses posted on website, tech giant confirms.
Amazon has suffered a major data breach that caused customer names and email addresses to be disclosed on its website, just two days ahead of Black Friday. The e-commerce giant said it has emailed affected customers but refused to give any more details on how many people were affected or where they are based.
The firm said the issue was not a breach of its website or any of its systems, but a technical issue that inadvertently posted customer names and email addresses to its website. In a short statement, Amazon said: We have fixed the issue and informed customers who may have been impacted.
Customers who received the email were told: Our website inadvertently disclosed your email address or name and email address due to a technical error. The issue has been fixed. This is not a result of anything you have done, and there is no need for you to change your password or take any other action. The impacted customers have been contacted.
It added: Amazon takes all security-related matters very seriously and your account security is our top priority. We have policies and security measures in place to ensure that your personal information remains secure. -MORE...
Read more: https://www.theguardian.com/technology/2018/nov/21/amazon-hit-with-major-data-breach-days-before-black-friday
Ho, Ho Whut?!
procon
(15,805 posts)Hello,
"Were contacting you to let you know that our website inadvertently disclosed your email address due to a technical error. The issue has been fixed. This is not a result of anything you have done, and there is no need for you to change your password or take any other action. "
appalachiablue
(41,102 posts)LakeSuperiorView
(1,533 posts)Since it was not associated with the password, or credit card info, it sounds like no big deal. It terms of a "data breach" this sounds rather innocuous.
A data breach on LinkedIn exposed my password on the site and resulted in an email "from myself" to myself containing the password and a bunch of malarkey saying they had taken control of my computer, They wanted $900 deposited to a Bitcoin wallet to ensure not sending info from my system to my contacts. The password was my generic low security password, so it gains them nothing. I changed on every site that I used it.
Sounds like you don't have to do anything, other than keep an eye out for more spam and scams.
forgotmylogin
(7,518 posts)"We goofed up, nothing you can do! Sorry for the spam!" #noapology
marybourg
(12,584 posts)was disclosed, the response was to no one . My email address appeared instead of my name when viewing my account. ???
Julian Englis
(2,309 posts)mastermind
(229 posts)appalachiablue
(41,102 posts)They aren't investing in better account security, alas.