Nice! We’re contacting you to let you know that our website inadvertently disclosed your email address due to a technical error


#27

Ok - I received it also.

This opens a can of worms.

I think we all demand to know at least the following:

Who had access to our email
Where they had access to our email
Why they had access to our email
What other data linking to our email was accessible
What steps have been taken to mitigate this

@Rushdie - this would help assuage the concerns among sellers and also help us make better decisions about whether we intend to change our password

On a positive note, I’m set up with 2SV, so I believe I’m backstopped from someone busting into my account, however I need to know the following from Amazon @seamod:

  1. Will Amazon force a 2SV if there is an email address change?
  2. Will Amazon force a 2SV if there is a password change?
  3. Will Amazon email and/or text me with a notification if both of these events happen?

I would feel a lot more safe knowing 1) Yes; 2) Yes; and 3) Yes to both

I think that is reasonable to know. Based on the unacceptable cryptic message this morning I suspect I won’t get that.


#28

I am on the phone now with support and sent them a screen shot. On hold for escalation.


#29

I think you’re being too critical, ko_marketing, my guess is 13.

The manner in which Amazon has contacted us about this is totally crypic, vague, and 100% UNPROFESSIONAL!


#30

It takes less than 5 minutes, to change a password. So give me one good reason not to change it?
Again, with the absence of information on this breach and Amazon’s notoriously tight-lipped stance on anything, that occurs internally, CHANGE your password.

Please Google: Strong Password Generator and make it STRONG.


#31

I have confirmed the email IS from Amazon.

Now they are looking for a better explanation as I was unwilling to accept their canned response.


#32

I just got it also. I thought Amazon was more secure than this (if it’s real). I never click on links anyway and I was expecting to see the https as oppose to http.

It would make more since for them to use their message system even though I hate to see that red flag. If they would always use the message system, it would alleviate most of their hacker problems. If it is from Amazon, no way would they send a mass email so to upset the apple cart during Q4. :zipper_mouth_face:


#33

I also received the same message at 3:22 am. Thank you mikla for confirming the email is in fact from Amazon. Will watch the forum for any more updates.


#34

just got mine this morning, like Rushdie said, just change your password to be safe

so weird because I recently received an email in reference to my personal Amazon buyer account (this one I’m on is for work) and they gave me a ton of info telling me that one of their employees was in cahoots with a seller and selling them information and my personal account information was leaked to the seller in question by the employee in question

and then they said that the seller had been banned from selling and that they were going to prosecute the employee or something of that nature (craaaazy stuff)

think we’ll be fine though! hope that doesn’t change in the near future…


#35

I got it too. 4:05 AM EST.


#36

The email is coming from Customer Service, not the Seller side, so the message is being sent to Customers, not sellers.

My best guess is the names and email addresses, were (and may still be) sitting in AWS, in plain text, rather than being encrypted.

Passwords are normally encrypted, but I do not trust any breach, whether it be Amazon are the local corner grocery store.


#37

X-Originating-IP: [54.240.13.33]
Received-SPF: pass (domain of bounces.amazon.com designates 54.240.13.33 as permitted sender)


#38

It looks like it did originate within Amazon,

WHOIS Source: ARIN
IP Address: 54.240.13.33
Country: usUSA - Washington
Network Name: AMAZON-ASIA-SIN2
Owner Name: Amazon Data Services Japan
CIDR: 54.254.0.0/16
From IP: 54.254.0.0
To IP: 54.254.255.255
Allocated: Yes
Contact Name: Amazon Data Services Japan
Address: 11F Shibuya Cross Tower, 2-15-1, Shibuya-ku Shibuya, Tokyo
Email: ****************@amazon.com
Abuse Email: abuse@amazonaws.com
Phone: +1-206-266-4064

NetRange: 54.240.0.0 - 54.255.255.255
CIDR: 54.240.0.0/12
NetName: AMAZON-2011L
NetHandle: NET-54-240-0-0-1
Parent: NET54 (NET-54-0-0-0-0)
NetType: Direct Allocation
OriginAS: AS16509
Organization: Amazon Technologies Inc. (AT-88-Z)
RegDate: 2011-12-09
Updated: 2012-04-02

OrgName: Amazon Technologies Inc.
OrgId: AT-88-Z
Address: 410 Terry Ave N.
City: Seattle
StateProv: WA
PostalCode: 98109
Country: US
RegDate: 2011-12-08
Updated: 2017-01-28
Comment: All abuse reports MUST include:
Comment: * src IP
Comment: * dest IP (your IP)
Comment: * dest port
Comment: * Accurate date/timestamp and timezone of activity
Comment: * Intensity/frequency (short log extracts)
Comment: * Your contact details (phone and email) Without these we will be unable to identify the correct owner of the IP address at that point in time.

OrgTechHandle: ANO24-ARIN
OrgTechName: Amazon EC2 Network Operations
OrgTechPhone: +1-206-266-4064
OrgTechEmail: ****************@amazon.com

OrgAbuseHandle: AEA8-ARIN
OrgAbuseName: Amazon EC2 Abuse
OrgAbusePhone: +1-206-266-4064
OrgAbuseEmail: abuse@amazonaws.com

OrgNOCHandle: AANO1-ARIN
OrgNOCName: Amazon AWS Network Operations
OrgNOCPhone: +1-206-266-4064
OrgNOCEmail: ****************@amazon.com

NetRange: 54.254.0.0 - 54.254.255.255
CIDR: 54.254.0.0/16
NetName: AMAZON-ASIA-SIN2
NetHandle: NET-54-254-0-0-1
Parent: AMAZON-2011L (NET-54-240-0-0-1)
NetType: Reallocated
OriginAS: AS16509
Organization: Amazon Data Services Japan (AMAZO-49)
RegDate: 2012-08-01
Updated: 2013-08-28

OrgName: Amazon Data Services Japan
OrgId: AMAZO-49
Address: 11F Shibuya Cross Tower
Address: 2-15-1, Shibuya-ku Shibuya
City: Tokyo
StateProv:
PostalCode: 150-0002
Country: JP
RegDate: 2012-08-01
Updated: 2014-07-01
Comment: The activity you have detected originates from a dynamic hosting environment.
Comment: For fastest response, please submit abuse reports at http://aws-portal.amazon.com/gp/aws/html-forms-controller/contactus/AWSAbuse
Comment: For more information regarding EC2 see:
Comment: http://ec2.amazonaws.com/
Comment: All reports MUST include:
Comment: * src IP
Comment: * dest IP (your IP)
Comment: * dest port
Comment: * Accurate date/timestamp and timezone of activity
Comment: * Intensity/frequency (short log extracts)
Comment: * Your contact details (phone and email) Without these we will be unable to identify the correct owner of the IP address at that point in time.

OrgAbuseHandle: AEA8-ARIN
OrgAbuseName: Amazon EC2 Abuse
OrgAbusePhone: +1-206-266-4064
OrgAbuseEmail: abuse@amazonaws.com

OrgTechHandle: ANO24-ARIN
OrgTechName: Amazon EC2 Network Operations
OrgTechPhone: +1-206-266-4064
OrgTechEmail: ****************@amazon.com

OrgNOCHandle: AANO1-ARIN
OrgNOCName: Amazon AWS Network Operations
OrgNOCPhone: +1-206-266-4064
OrgNOCEmail: ****************@amazon.com


#39

I got one also. Not really concerned. My e-mail is all over the internet and I use my real name as my seller name. Now on Facebook I use a fake name. Not because of security. I just found a name I loved and it fit me perfectly


#40

I got it for both my buyer and seller account but it says password wasn’t affected and no need to change


#41

OK… so Amazon is unwilling at this time to provide more information and I am waiting for another call from further escalation. Meanwhile I have forwarded this email to Jeff asking for more information and a professional response.

They did confirm that it was from Customer Service, so, as mentioned be others, it is likely sent out to Customers vs Sellers. But, I did not receive it on my other buying accounts.


#42

I presumed it was a spoof and forwarded it to spoof @
If it’s real it’s incredibly unprofessional, it it’s a mistake, ditto.


#43

yes I got one… I knew it was fake from the capital “A” in “Account” after reading the email and thinking it was odd.


#44

I received the same email. I can verify by the headers and other sleuthing it is legit from Amazon.


#45

Just a FYI… i have forwarded the email to Jeff and copied our attorney asking for more information, with a list of questions. We will see what happens.

Meanwhile, not much else we can do. If concerned, change your password.

Back to regular scheduled programming…


#46

My opinion is amazon shares our information anyhow. i got suspended a few months ago and shortly after i was reinstated i started getting fake emails(wanting me to login and confirm my bank account #) about my suspension, it was roughly a month later but my question is how did they know and have details regarding my suspension to email, so they had my email, the fact i was suspended and details that my suspension was still being looked over while i was allowed to sell.

I feel amazon customer service or someone, maybe outsourced CS is grabbing our details and passing it along