Yesterday we told you all about the great deals with Amazon Prime Day. But, before you make your way over to Amazon to get in on the savings, you might want to think about changing your password for the site.
If you think back to recent security concerns, one of the first things that comes to mind is probably data breaches. Target, Home Depot, J.P. Morgan Chase, various restaurants, online stores, hospitals, hotels and other retailers were hit by hackers who wanted their customers' information. As a result, millions of people had their information compromised.
Now, the person who claimed responsibility for hacking into the Baton Rouge police database last week is up to no good again. The person using the same Twitter handle, 0x2Taylor, is taking credit for breaching an Amazon server.
The hacker says he has released the usernames and passwords of over 80,000 Amazon Kindle users. The breached server contains email addresses, passwords, the last IP address they used and the user's phone number. Before leaking the information the hacker Tweeted about Amazon servers being vulnerable.
I am amazon, i fail at securing data for 80K users. i ignore warnings. be like me today ~ #0x2Taylor
— DK ~ $Taylor (@0x2Taylor) July 8, 2016
The hacker said he was trying to deal with Amazon privately to show them they have security flaws. 0x2Taylor claims to have asked Amazon for a $700 payment before leaking the information online, but says the company ignored his warnings. He says Amazon is such a big company that they should have the money to provide proper security.
He eventually posted screenshots of some of the stolen information on Twitter before uploading all of it to the Mega cloud storage service. He says he didn't want to post the sensitive information and even advised users to change their passwords immediately and to do it on a regular basis.
One security expert looked into the issue further and claims that the leaked information might not be as worrisome as ox2Taylor would have you think. After further evaluation, the released data seems to have been generated, and may not be representative of legitimate Amazon users.
Still, while investigators continue to seek answers, it's a good idea to take some precautions. Here's what you can do to protect yourself:
- Change your passwords for all of your online accounts, especially anywhere you've used references to data hackers may have obtained through a breach.
- Keep an eye on your credit reports. If there's anything fishy going on, contact your bank or credit card provider and don't be afraid to freeze your accounts.
- Keep an eye on your email accounts and personal mail, too. Scammers can use the information they've obtained for phishing scams.