[BetaNews] Amazon discloses names and addresses -- but doesn't disclose details - Overclock.net - An Overclocking Community

Forum Jump: 

[BetaNews] Amazon discloses names and addresses -- but doesn't disclose details

Reply
 
Thread Tools
post #1 of 11 (permalink) Old 11-21-2018, 08:44 AM - Thread Starter
Waiting for 7nm EUV
 
tpi2007's Avatar
 
Join Date: Nov 2010
Posts: 11,469
Rep: 898 (Unique: 504)
[BetaNews] Amazon discloses names and addresses -- but doesn't disclose details

Quote:
If you're an Amazon customer you may have received a rather strange email this morning. It states that the company has, "...inadvertently disclosed your name and email address due to a technical error."

It then goes on to say, "The issue has been fixed. This is not a result of anything you have done, and there is no need for you to change your password or take any other action."
Quote:
UPDATE: In response to our request for a statement Amazon's PR department said, "We have fixed the issue and informed customers who may have been impacted."
Source.


The e-mail (screenshot at the source) is the most lacking thing I've seen recently; no explanation of where your details were exposed, for how long and to whom and not a trace of an apology as they should, because now people may eventually get spam and given that their names were also exposed, targeted phishing.


tpi2007 is offline  
Sponsored Links
Advertisement
 
post #2 of 11 (permalink) Old 11-21-2018, 10:49 AM
New to Overclock.net
 
EniGma1987's Avatar
 
Join Date: Sep 2011
Posts: 6,323
Rep: 338 (Unique: 248)
At least not much damage was done. Everyone's names, addresses, birthdates, and in many cases social security numbers and CC info has already been leaked a few other times in the past year so this doesnt really add to any of that.

EniGma1987 is offline  
post #3 of 11 (permalink) Old 11-21-2018, 02:53 PM - Thread Starter
Waiting for 7nm EUV
 
tpi2007's Avatar
 
Join Date: Nov 2010
Posts: 11,469
Rep: 898 (Unique: 504)
Quote: Originally Posted by EniGma1987 View Post
At least not much damage was done. Everyone's names, addresses, birthdates, and in many cases social security numbers and CC info has already been leaked a few other times in the past year so this doesnt really add to any of that.

Incorrect premise: "Everyone's". The e-mail from the source article was sent to someone shopping at the UK site, but the one quoted in the Ars article about the same subject is from the US store, so who knows how many were affected.

And even if it was true that "everyone" had been affected at some point in time before, bad actors having more data points to connect dots about people is never a good thing. Being relative about these breaches / bugs is not a good thing to do, even less so when said entity is not forthcoming with basic information, and makes them look even worse not only for the lack of apology, but also because it seems like they are saving the details for after the heavy shopping period that we're in right now.

From the Ars article:

Quote:
While the disclosure is limited and has since been contained, Wednesday’s email is frustrating because it omits details that are key to assessing the severity of the event. It’s not asking too much to want Amazon to say precisely where and how the information was disclosed and for how long—those details matter. A disclosure that lasted for only a few minutes and shared details with a single random person is different from one that published names and email addresses on Amazon’s site for an extended period.

It’s not clear why Amazon is notifying customers of the event but declining to provide such basic information. Notably, Wednesday is the day before the four-day Thanksgiving holiday in the US. Companies often use the pre-Thanksgiving Wednesday to make legally obligated disclosures that reflect poorly on the company or its management.


tpi2007 is offline  
Sponsored Links
Advertisement
 
post #4 of 11 (permalink) Old 11-21-2018, 03:05 PM
Overclocker in training
 
ThrashZone's Avatar
 
Join Date: Apr 2017
Posts: 7,757
Rep: 76 (Unique: 57)
Hi,
Just bought a couple ssd's yesterday no email besides confirmation.

Was going to buy from newegg but they weren't sold and shipped by them.

CPU
i9-9940x With Heatkiller IV Pro and VRM Plexi-Copper water block
Motherboard
ASUS x299 Rampage VI Apex
GPU
Titan Xp with copper Water Block
RAM
Trident Z 3600C16 4x8gb's b-die default timings 16-16-16-36
Hard Drive
Samsung 970 Evo Plus 500gb M.2/ Samsung 850 Pro 256gb for os and 500gb evo for favorite games plus other wd hdd's for data and backup's
Optical Drive
LG Blu-Ray WH16NS40
Power Supply
evga 1200-P2
Cooling
2-280GTX Black Ice Nemesis rads with D5 pump-res combo and D5 top before and after rads.
Case
corsair 450D with added 2nd floor to house radiator on top
Operating System
Win-7 pro & 10 pro Win-7 Primary os.
Monitor
ASUS VG248QE 24" 144Hz
Keyboard
Logitech G910 Orion spectrum
Mouse
Redragon Perdition
Audio
Built in realtek and Insignia 2.0 soundbar HSB318
CPU
i7-5930k with Heatkiller IV Pro Plexi-Copper and koolance vrm water blocks
Motherboard
X99 Sabertooth
GPU
EVGA 1080ti FTW3 with Water block
RAM
Trident-Z 3200C14 4x8gb's b-die default timings 14-14-14-34
Hard Drive
Samsung 970 Evo 500gb M.2/ Samsung 850 Pro 256gb for os and 500gb evo for favorite games plus other wd hdd's for data and backup's
Power Supply
EVGA 1000-P2
Cooling
2-240 GTX Black Ice Nemesis rads/ D5 pump-res combo and D5 top before and after rads.
Case
Corsair 450D with added 2nd floor to house radiator on top
Operating System
Win-7 and 10 pro Win-7 Primary os.
Monitor
AOC G2460PG 24"G-Sync 144Hz
Mouse
Red Dragon Perdition
Audio
Built in realtek and Insignia 2.0 soundbar HSB318
Hard Drive
eLeaf MELO-3 4ml
Power Supply
SE US18650VTC6 3120mAh 30A 3.6V 18650 Li-ion Battery - GREENx4
Case
ANGIS Legion MOD 200w Geek Vape
Operating System
VapeWild RazzleBerry 50-50-0mg nic
▲ hide details ▲
ThrashZone is offline  
post #5 of 11 (permalink) Old 11-21-2018, 03:11 PM
Have you seen my Baseball
 
Drake87's Avatar
 
Join Date: Aug 2015
Posts: 841
Rep: 29 (Unique: 27)
I received one of these emails last night.
Drake87 is offline  
post #6 of 11 (permalink) Old 11-22-2018, 11:07 AM
New to Overclock.net
 
WingedCow's Avatar
 
Join Date: Jul 2009
Location: Lawton, OK
Posts: 1,242
Rep: 46 (Unique: 42)
I've received this email few days ago on the 20th and didnt thought much of it, did some google search and no hit came up that night. The email literally says:

Hello,

We’re contacting you to let you know that our website inadvertently disclosed your email address due to a technical error. The issue has been fixed. This is not a result of anything you have done, and there is no need for you to change your password or take any other action.

Sincerely,
Customer Service
http://Amazon.com.
WingedCow is offline  
post #7 of 11 (permalink) Old 11-22-2018, 12:11 PM
Old to Overclock.net
 
Join Date: Jan 2008
Posts: 2,060
Rep: 119 (Unique: 103)
There's a few websites with compilations of data from major leaks that are available on dark nets, it's worth it for anyone to take a look. You can usually try your passwords, commonly used usernames, email, etc.

Here's one of the better known ones...
https://haveibeenpwned.com/
https://haveibeenpwned.com/Passwords
https://en.wikipedia.org/wiki/Have_I_Been_Pwned%3F

Quote: Originally Posted by EniGma1987 View Post
Everyone's names, addresses, birthdates, and in many cases social security numbers and CC info has already been leaked a few other times in the past year so this doesnt really add to any of that.
Everyone I know who I convinced to look up their info in those websites I speak of had their info leaked somewhere somehow at some point. The thing that surprised most was how their password (the one they used for everything too) was already compromised and included on about a dozen or so password dictionaries available on dark nets that hackers use to brute force passwords.

I remember I found out I was hit in one of Adobes security breaches, the name and email I used to register and download Shockwave player back in the day.

362436
(15 items)
CPU
AMD Ryzen 5 1600
Motherboard
Asus Prime X370-A AMD Ryzen AM4 DDR4
GPU
Gigabyte GeForce GTX 950
RAM
2x Corsair Valueselect 8GB 288 Pin DDR4 SDRAM DDR4 @ 2133
Hard Drive
Corsair Force LS 2.5" 120GB SATA III MLC SSD
Optical Drive
Lite-On 24X SATA DVD/RW Optical Drive
Power Supply
Corsair RM550x 550W 80 Plus Gold
Cooling
Noctua NH-L9A-AM4 Low-Profile
Case
Antec NSK4100 Steel ATX Mid Tower
Operating System
Mint 18.2 x64
Monitor
HP 24" LCD/LED 1920x1080
Keyboard
IBM PC-AT
Mouse
Logitech G5
Audio
Sennheiser HD650
Audio
Asus Essence STX II
▲ hide details ▲



Last edited by xJumper; 11-22-2018 at 12:19 PM.
xJumper is offline  
post #8 of 11 (permalink) Old 11-22-2018, 03:12 PM
Original 16-bit Genesis®
 
Omega X's Avatar
 
Join Date: Mar 2013
Location: That gap between the couch cushion.
Posts: 1,660
Rep: 67 (Unique: 44)
Who needs the CIA when companies leak data willingly.
Omega X is offline  
post #9 of 11 (permalink) Old 11-22-2018, 03:27 PM
professional curmudgeon
 
looniam's Avatar
 
Join Date: Apr 2009
Posts: 9,733
Rep: 795 (Unique: 452)
Quote: Originally Posted by Omega X View Post
Who needs the CIA when companies [people] leak data willingly.
FTFY.

btw, really people, its been since 96 i knew to only use "disposable" emails for EVERYTHING, personal never gets used. hell, i'm probably the only person who knows it, well besides my isp and whoever they sell data to . . .

Remember the golden rule of statistics: A personal sample size of one is a sufficient basis upon which to draw universal conclusions.
Upload the computer to Dropbox and provide a link to it so others may download it to examine and give advice for repairs.
loon 3.2
(18 items)
CPU
i7-3770K
Motherboard
Asus P8Z77-V Pro
GPU
EVGA 980TI SC+
RAM
16Gb PNY ddr3 1866
Hard Drive
PNY 1311 240Gb
Hard Drive
1 TB Seagate
Hard Drive
3 TB WD Blue
Optical Drive
DVD DVDRW+/-
Power Supply
EVGA SuperNova 750 G2
Cooling
EKWB P280 kit
Cooling
EK-VGA supremacy
Case
Stryker M [hammered and drilled]
Operating System
Win X
Monitor
LG 24MC57HQ-P
Keyboard
Ducky Zero [blues]
Mouse
corsair M65
Audio
SB Recon3D
Audio
Klipsch ProMedia 2.1
▲ hide details ▲


looniam is offline  
post #10 of 11 (permalink) Old 11-22-2018, 06:30 PM
Rabies is my business
 
BulletSponge's Avatar
 
Join Date: Sep 2011
Location: Midland Texas
Posts: 4,329
Rep: 236 (Unique: 194)
Hmm, on the 20th I noticed my checking account was suddenly empty. After checking with my credit union turns out they had 5 other members within the last 24 hours report checking accounts suddenly emptied. All through ATM withdrawals in Fort Smith, Akansas. It'll be the internet sensation of the century if Amazon got seriously compromised and they covered it up until after Black Friday/Cyber Monday.

The New Recruit
(17 items)
CPU
AMD R5 1600X
Motherboard
Asus ROG Crosshair VI Hero
GPU
EVGA 1080 ti SC2
RAM
G.Skill Trident Z 3200
Hard Drive
WD Black 256GB Performance SSD
Hard Drive
WD 1TB Caviar Black
Hard Drive
WD 1TB Blue
Hard Drive
Samsung 840 Evo 120 GB
Power Supply
EVGA Supernova 750 G2
Cooling
Noctua NH-U12S
Case
Phanteks Enthoo EVOLV
Operating System
Windows 10
Monitor
BenQ XL2730Z
Mouse
Logitech G502
Audio
Creative Soundblaster X-Fi Titanium HD
Audio
Klipsch ProMedia 2.1 BT
Other
Sennheiser PC 363D
▲ hide details ▲
BulletSponge is offline  
Reply

Quick Reply
Message:
Options

Register Now

In order to be able to post messages on the Overclock.net - An Overclocking Community forums, you must first register.
Please enter your desired user name, your email address and other required details in the form below.
User Name:
If you do not want to register, fill this field only and the name will be used as user name for your post.
Password
Please enter a password for your user account. Note that passwords are case-sensitive.
Password:
Confirm Password:
Email Address
Please enter a valid email address for yourself.
Email Address:

Log-in



Currently Active Users Viewing This Thread: 1 (0 members and 1 guests)
 
Thread Tools
Show Printable Version Show Printable Version
Email this Page Email this Page


Forum Jump: 

Posting Rules  
You may post new threads
You may post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are Off
Pingbacks are Off
Refbacks are Off