1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Amazon Accounts Hacked?

Discussion in 'Black Hat SEO' started by Vladamir, Feb 28, 2016.

  1. Vladamir

    Vladamir Power Member

    Joined:
    Jan 4, 2012
    Messages:
    549
    Likes Received:
    326
    Gender:
    Male
    Occupation:
    Restore Old Boats
    Location:
    Zihuatanejo, Ixtapa, Mexico
    I received a message from amazon today:

    Hello,

    At Amazon we take your security and privacy very seriously. As part of our routine monitoring, we discovered a list of email address and password sets posted online. While the list was not Amazon-related, we know that many customers reuse their passwords on several websites. We believe your email address and password set was on that list. For your security, we have assigned a temporary password to your account.

    Did anyone else get this? How worried should I be, I am trying to decide if I should go through all sites and passwords and start changing them I use about 4 different passwords commonly.

    Any idea on this or help appreciated.

    Cheers,


    Vlad
     
  2. Galleta

    Galleta Regular Member

    Joined:
    Dec 7, 2015
    Messages:
    270
    Likes Received:
    89
    looks like phishing?

    Can you check the source code / header of the email to see who sent it from which server?
     
  3. redarrow

    redarrow Elite Member

    Joined:
    Apr 1, 2013
    Messages:
    5,164
    Likes Received:
    1,176
    That might be a scam, dont use any links provided or shiwn, unless you no there for reel.
    ,
    you can foward that entail to amazon see if it real.

    Good luck.


    there another way to see the scam .you can open page script ,or put your mouse arrow over the link ,it will tell you the website it going to , i am guessing not amazon potbelly a scam/clone.
     
    Last edited: Feb 28, 2016
  4. Vladamir

    Vladamir Power Member

    Joined:
    Jan 4, 2012
    Messages:
    549
    Likes Received:
    326
    Gender:
    Male
    Occupation:
    Restore Old Boats
    Location:
    Zihuatanejo, Ixtapa, Mexico
    [email protected]

    ...the full email...I dont think its phishing since the email has no links
    "Hello,

    At Amazon we take your security and privacy very seriously. As part of our routine monitoring, we discovered a list of email address and password sets posted online. While the list was not Amazon-related, we know that many customers reuse their passwords on several websites. We believe your email address and password set was on that list. For your security, we have assigned a temporary password to your account.

    You will need to reset your password when you return to the Amazon.com site. To reset your password, click "Your Account" at the top of any page on Amazon.com. On the Sign In page, click the "Forgot your password?" link to reach the Amazon.com Password Assistance page. After you enter your email or mobile phone number, you will receive an email containing a personalized link. Click the link from the email and follow the directions provided.

    Your new password will be effective immediately. We recommend that you choose a password that you have never used with any website.

    Sincerely,

    Amazon.com
    http://www.amazon.com
    "
     
    Last edited: Feb 28, 2016
  5. misteryou.

    misteryou. Power Member

    Joined:
    Feb 1, 2012
    Messages:
    575
    Likes Received:
    111
    If they email people each time they discover a list of email address and password posted online, they will need to email every day of the year xD
     
  6. Galleta

    Galleta Regular Member

    Joined:
    Dec 7, 2015
    Messages:
    270
    Likes Received:
    89
    I asked you for the header / source code of email, because the sender email can be easily manipulated!!
     
  7. Des_cartes

    Des_cartes Junior Member

    Joined:
    Jan 19, 2012
    Messages:
    160
    Likes Received:
    64
    Big companies send email like that very often, and yeah they do buy hacked data sometime or at least goes through every leaked/free data, if you use a different password for each account no wories just just scan your PC with MalwareBytes (https://www.malwarebytes.org/), if you do re-use the same password I suggest you to move to a password manager (like lastpass.com) they will make your life very easy when you need to update a lot of passwords quickly and it's way easier to manage everything.

    Side note: Facebook even lock your account if your data is published online or if you have a malicious browser extension.
     
    • Thanks Thanks x 1
    Last edited: Feb 28, 2016
  8. Vladamir

    Vladamir Power Member

    Joined:
    Jan 4, 2012
    Messages:
    549
    Likes Received:
    326
    Gender:
    Male
    Occupation:
    Restore Old Boats
    Location:
    Zihuatanejo, Ixtapa, Mexico
    x-store-info:J++/JTCzmObr++wNraA4Pa4f5Xd6uensydyekesGC2M=
    Authentication-Results: hotmail.com; spf=pass (sender IP is 54.240.13.1) [email protected]nces.amazon.com; dkim=pass header.d=amazon.com; x-hmca=pass [email protected]
    X-SID-PRA: [email protected]
    X-AUTH-Result: PASS
    X-SID-Result: PASS
    X-Message-Status: n:n

     
  9. Des_cartes

    Des_cartes Junior Member

    Joined:
    Jan 19, 2012
    Messages:
    160
    Likes Received:
    64
  10. Vladamir

    Vladamir Power Member

    Joined:
    Jan 4, 2012
    Messages:
    549
    Likes Received:
    326
    Gender:
    Male
    Occupation:
    Restore Old Boats
    Location:
    Zihuatanejo, Ixtapa, Mexico
    Thanks Des I do have a password manager called roboform. It autofills passwords so i dont have to type them and keyloggers dont see. But I guess im going to have to do some password updating today looks like that email is real.
     
  11. bahus

    bahus Regular Member

    Joined:
    Jun 4, 2014
    Messages:
    342
    Likes Received:
    93
    Gender:
    Male
    Why don't you get on live chat with them and verify if the email is legit.