Amazon Hit With Major Data Breach | News | Xuper IT

Amazon hit with major data breach

Two days ahead of Black Friday, Amazon suffered a major data breach that caused customer’s personal details including names and email addresses to be disclosed on it’s website.

Amazon emailed the affected users on Tuesday, warning them that it exposed an unknown number of customer addresses after a technical error. The firm has refused to give any further details on how many people were affected or where they are based.

In the email with the subject line: “Important Information about your Amazon.com Account.” Amazon stated “We’re contact you to let you know that our website inadvertently disclosed your email address due to a technical error.” The firm provided few details but confirmed that: “The issue has been fixed. This is not a result of anything you have done, and there is no need for you to change your password or take any further action.”

Unfortunately, users don’t know which of Amazon’s sites was impacted, who their personal details could have been exposed to, or any idea of the number of victims. Amazon have also been unclear on whether it has plans to contact any government regulatory bodies.

UK data regulator the Information Commissioner’s Office, who must be informed of any data breach as part of the GDPR (General Data Protection Regulation), said it was following the situation.

Industry experts have recommended those affected should ignore Amazon’s advice and consider changing their passwords.

Richard Walters, chief technical officer of cybersecurity firm CensorNet, said “If the reports are correct, the information leaked – names and email addresses – is less significant than some of these other breaches, which saw card details leaked,” he said. “However, it would be wrong to assume that this makes the breach inconsequential. Cyber-criminals can do a lot of damage with a large database of names and emails.

“A large majority of people still use predictable passwords, and thanks to previous high-profile breaches many people’s passwords are also readily available on the dark web. For cyber-criminals, it then just becomes an exercise in joining the dots.

“If you’ve been affected, make sure you change your passwords quickly.”

With one of the busiest retail days of the year, Black Friday around the corner, this security lapse could not have come at a much worse time. The issue could scare users away from Amazon, which could be problematic for revenue if the issue impacted a large number of users just before Black Friday.