Nice! We’re contacting you to let you know that our website inadvertently disclosed your email address due to a technical error


#33

I also received the same message at 3:22 am. Thank you mikla for confirming the email is in fact from Amazon. Will watch the forum for any more updates.


#34

just got mine this morning, like Rushdie said, just change your password to be safe

so weird because I recently received an email in reference to my personal Amazon buyer account (this one I’m on is for work) and they gave me a ton of info telling me that one of their employees was in cahoots with a seller and selling them information and my personal account information was leaked to the seller in question by the employee in question

and then they said that the seller had been banned from selling and that they were going to prosecute the employee or something of that nature (craaaazy stuff)

think we’ll be fine though! hope that doesn’t change in the near future…


#35

I got it too. 4:05 AM EST.


#36

The email is coming from Customer Service, not the Seller side, so the message is being sent to Customers, not sellers.

My best guess is the names and email addresses, were (and may still be) sitting in AWS, in plain text, rather than being encrypted.

Passwords are normally encrypted, but I do not trust any breach, whether it be Amazon are the local corner grocery store.


#37

X-Originating-IP: [54.240.13.33]
Received-SPF: pass (domain of bounces.amazon.com designates 54.240.13.33 as permitted sender)


#38

It looks like it did originate within Amazon,

WHOIS Source: ARIN
IP Address: 54.240.13.33
Country: usUSA - Washington
Network Name: AMAZON-ASIA-SIN2
Owner Name: Amazon Data Services Japan
CIDR: 54.254.0.0/16
From IP: 54.254.0.0
To IP: 54.254.255.255
Allocated: Yes
Contact Name: Amazon Data Services Japan
Address: 11F Shibuya Cross Tower, 2-15-1, Shibuya-ku Shibuya, Tokyo
Email: ****************@amazon.com
Abuse Email: abuse@amazonaws.com
Phone: +1-206-266-4064

NetRange: 54.240.0.0 - 54.255.255.255
CIDR: 54.240.0.0/12
NetName: AMAZON-2011L
NetHandle: NET-54-240-0-0-1
Parent: NET54 (NET-54-0-0-0-0)
NetType: Direct Allocation
OriginAS: AS16509
Organization: Amazon Technologies Inc. (AT-88-Z)
RegDate: 2011-12-09
Updated: 2012-04-02

OrgName: Amazon Technologies Inc.
OrgId: AT-88-Z
Address: 410 Terry Ave N.
City: Seattle
StateProv: WA
PostalCode: 98109
Country: US
RegDate: 2011-12-08
Updated: 2017-01-28
Comment: All abuse reports MUST include:
Comment: * src IP
Comment: * dest IP (your IP)
Comment: * dest port
Comment: * Accurate date/timestamp and timezone of activity
Comment: * Intensity/frequency (short log extracts)
Comment: * Your contact details (phone and email) Without these we will be unable to identify the correct owner of the IP address at that point in time.

OrgTechHandle: ANO24-ARIN
OrgTechName: Amazon EC2 Network Operations
OrgTechPhone: +1-206-266-4064
OrgTechEmail: ****************@amazon.com

OrgAbuseHandle: AEA8-ARIN
OrgAbuseName: Amazon EC2 Abuse
OrgAbusePhone: +1-206-266-4064
OrgAbuseEmail: abuse@amazonaws.com

OrgNOCHandle: AANO1-ARIN
OrgNOCName: Amazon AWS Network Operations
OrgNOCPhone: +1-206-266-4064
OrgNOCEmail: ****************@amazon.com

NetRange: 54.254.0.0 - 54.254.255.255
CIDR: 54.254.0.0/16
NetName: AMAZON-ASIA-SIN2
NetHandle: NET-54-254-0-0-1
Parent: AMAZON-2011L (NET-54-240-0-0-1)
NetType: Reallocated
OriginAS: AS16509
Organization: Amazon Data Services Japan (AMAZO-49)
RegDate: 2012-08-01
Updated: 2013-08-28

OrgName: Amazon Data Services Japan
OrgId: AMAZO-49
Address: 11F Shibuya Cross Tower
Address: 2-15-1, Shibuya-ku Shibuya
City: Tokyo
StateProv:
PostalCode: 150-0002
Country: JP
RegDate: 2012-08-01
Updated: 2014-07-01
Comment: The activity you have detected originates from a dynamic hosting environment.
Comment: For fastest response, please submit abuse reports at http://aws-portal.amazon.com/gp/aws/html-forms-controller/contactus/AWSAbuse
Comment: For more information regarding EC2 see:
Comment: http://ec2.amazonaws.com/
Comment: All reports MUST include:
Comment: * src IP
Comment: * dest IP (your IP)
Comment: * dest port
Comment: * Accurate date/timestamp and timezone of activity
Comment: * Intensity/frequency (short log extracts)
Comment: * Your contact details (phone and email) Without these we will be unable to identify the correct owner of the IP address at that point in time.

OrgAbuseHandle: AEA8-ARIN
OrgAbuseName: Amazon EC2 Abuse
OrgAbusePhone: +1-206-266-4064
OrgAbuseEmail: abuse@amazonaws.com

OrgTechHandle: ANO24-ARIN
OrgTechName: Amazon EC2 Network Operations
OrgTechPhone: +1-206-266-4064
OrgTechEmail: ****************@amazon.com

OrgNOCHandle: AANO1-ARIN
OrgNOCName: Amazon AWS Network Operations
OrgNOCPhone: +1-206-266-4064
OrgNOCEmail: ****************@amazon.com


#39

I got one also. Not really concerned. My e-mail is all over the internet and I use my real name as my seller name. Now on Facebook I use a fake name. Not because of security. I just found a name I loved and it fit me perfectly


#40

I got it for both my buyer and seller account but it says password wasn’t affected and no need to change


#41

OK… so Amazon is unwilling at this time to provide more information and I am waiting for another call from further escalation. Meanwhile I have forwarded this email to Jeff asking for more information and a professional response.

They did confirm that it was from Customer Service, so, as mentioned be others, it is likely sent out to Customers vs Sellers. But, I did not receive it on my other buying accounts.


#42

I presumed it was a spoof and forwarded it to spoof @
If it’s real it’s incredibly unprofessional, it it’s a mistake, ditto.


#43

yes I got one… I knew it was fake from the capital “A” in “Account” after reading the email and thinking it was odd.


#44

I received the same email. I can verify by the headers and other sleuthing it is legit from Amazon.


#45

Just a FYI… i have forwarded the email to Jeff and copied our attorney asking for more information, with a list of questions. We will see what happens.

Meanwhile, not much else we can do. If concerned, change your password.

Back to regular scheduled programming…


#46

My opinion is amazon shares our information anyhow. i got suspended a few months ago and shortly after i was reinstated i started getting fake emails(wanting me to login and confirm my bank account #) about my suspension, it was roughly a month later but my question is how did they know and have details regarding my suspension to email, so they had my email, the fact i was suspended and details that my suspension was still being looked over while i was allowed to sell.

I feel amazon customer service or someone, maybe outsourced CS is grabbing our details and passing it along


#47

It is NOT a fake email. Several of us have already confirmed the fact it is real, with Amazon directly.


#48

As I stated above, this was a breach of the AWS servers, which is clearly visible ht tp://aws-portal.amazon.com/gp/aws/html-forms-controller/contactus/AWSAbuse


#49

Yep, we got the same notice. I would really like to know HOW they disclosed this, and to whom it was disclosed.


#50

I was saying an Amazon employee didn’t send it.
Whether it came from an Amazon server… the IP address in the header didn’t match anything from amazon as is normally the case.


#51

I will go there and take a look.
Thanks.


#52

there is no need to panic or change the password.
the email, although looks scammy, but it was sent from Amazon.
somehow your name and email was leaked.
so at worse, you will get some spammy emails, and that’s it.