The DU Lounge

Silver Gaia

(4,544 posts) Thu Mar 26, 2020, 08:25 PM Mar 2020

Amazon Data Breach?

Has anyone heard about or gotten a message from Amazon asking you to log in and change your password because of a data breach?

My daughter's account was logged out. There was a message saying she needed to change her password because of a data breach. She did this and told me about it.

I can't find any information about a recent data breach, and my account is fine. I am concerned that her account is compromised.

It seems like it could have been some sort of redirect and phish, but she won't even think about it. Her account is linked to my prime account. I'm not happy about that.

Anyone know anything about this?

14 replies

= new reply since forum marked as read

Highlight:

Amazon Data Breach? (Original Post) Silver Gaia Mar 2020 OP

By "message" do you mean an email? jberryhill Mar 2020 #1

It was popup. Silver Gaia Mar 2020 #8

I'm with you on this one. Hubby the tech guy says go to your amazon account. If you are locked out, GreenPartyVoter Mar 2020 #2

As a general rule, these are all scams ramblin_dave Mar 2020 #3

I just got one in the last few minutes Bev54 Mar 2020 #4

An email? jberryhill Mar 2020 #6

Yes an email Bev54 Mar 2020 #13

Definitely a scam jberryhill Mar 2020 #14

I purchased from the official Amazon website yesterday. Blue_true Mar 2020 #5

She didn't follow an email link. Silver Gaia Mar 2020 #7

I would suspect she has a virus of some kind jberryhill Mar 2020 #9

I am in agreement. Thanks. Silver Gaia Mar 2020 #10

This one is particularly good for browser-based malware jberryhill Mar 2020 #11

I use Malwarebytes on my own computer. Silver Gaia Mar 2020 #12

jberryhill

(62,444 posts)

1. By "message" do you mean an email?

Reply to Silver Gaia (Original post)

Thu Mar 26, 2020, 08:28 PM

Mar 2020

It’s a scam.

How did this “message from Amazon” show up?

Was this an email? A text? A browser notification?

One should never, of course, follow a link from an email to log into anything.

Silver Gaia

(4,544 posts)

8. It was popup.

Reply to jberryhill (Reply #1)

Thu Mar 26, 2020, 09:16 PM

Mar 2020

See my post below. Thanks!

GreenPartyVoter

(72,378 posts)

2. I'm with you on this one. Hubby the tech guy says go to your amazon account. If you are locked out,

Reply to Silver Gaia (Original post)

Thu Mar 26, 2020, 08:29 PM

Mar 2020

get in touch w Amazon to make sure no purchases have been made yet.

ramblin_dave

(1,546 posts)

3. As a general rule, these are all scams

Reply to Silver Gaia (Original post)

Thu Mar 26, 2020, 08:30 PM

Mar 2020

If an email link was followed to login to Amazon, the scammers could now have her login credentials.

She should immediately login to Amazon at their website and change her password. See if her Amazon account email has changed and put it back if so.

Bev54

(10,053 posts)

4. I just got one in the last few minutes

Reply to Silver Gaia (Original post)

Thu Mar 26, 2020, 08:41 PM

Mar 2020

I think it is a scam, I will not do anything with it.

jberryhill

(62,444 posts)

6. An email?

Reply to Bev54 (Reply #4)

Thu Mar 26, 2020, 09:06 PM

Mar 2020

Bev54

(10,053 posts)

13. Yes an email

Reply to jberryhill (Reply #6)

Thu Mar 26, 2020, 10:37 PM

Mar 2020

jberryhill

(62,444 posts)

14. Definitely a scam

Reply to Bev54 (Reply #13)

Thu Mar 26, 2020, 10:58 PM

Mar 2020

Blue_true

(31,261 posts)

5. I purchased from the official Amazon website yesterday.

Reply to Silver Gaia (Original post)

Thu Mar 26, 2020, 08:54 PM

Mar 2020

Went as smooth as silk, so no message about password.

If the email that your daughter got contained a link to go to change her password, that is a classic phising email. I suggest that she log onto the official Amazon site immediately and change her password again.

Silver Gaia

(4,544 posts)

7. She didn't follow an email link.

Reply to Silver Gaia (Original post)

Thu Mar 26, 2020, 09:15 PM

Mar 2020

She had been logged out of her account when she went to the website. She hadn't logged out herself, but was logged out. When she entered her password, she got a popup. The popup didn't ask her to change her password in the popup. It just said there was a data breach and recommended that she change her password, which she did on the website.

She installed the app on her phone and changed her password again with the app. It all *seems* OK now. I had her delete her bookmark in her browser and go in on a fresh URL and log in with the new password.

I think/hope she's OK now. :::crossing fingers:::

It just seemed weird that I couldn't find any info about a data breach.

jberryhill

(62,444 posts)

9. I would suspect she has a virus of some kind

Reply to Silver Gaia (Reply #7)

Thu Mar 26, 2020, 09:28 PM

Mar 2020

This sounds like either a malicious browser add-on or a virus infecting the machine.

This makes no sense at all.

(Does she have access to another machine that she can use to change her data yet again?)

This smells really bad.

On edit, okay, yes, changing the password on the phone and not using that computer is a good idea, but that machine needs an enema.

Silver Gaia

(4,544 posts)

10. I am in agreement. Thanks.

Reply to jberryhill (Reply #9)

Thu Mar 26, 2020, 09:46 PM

Mar 2020

But she thinks I'm overreacting. She's an adult and it's her computer, so I can't make her do anything. She did say she will run a virus check. We shall see.

Thanks for your input.

jberryhill

(62,444 posts)

11. This one is particularly good for browser-based malware

Reply to Silver Gaia (Reply #10)

Thu Mar 26, 2020, 10:26 PM

Mar 2020

https://www.malwarebytes.com/

I have no association with them, but their free download will pick up some browser-specific nasties that antivirus doesn’t always catch.

MAYBE it was an exploit which was session-specific to whatever she was doing, and won’t happen again.

Silver Gaia

(4,544 posts)

12. I use Malwarebytes on my own computer.

Reply to jberryhill (Reply #11)

Thu Mar 26, 2020, 10:34 PM

Mar 2020

It's very good. I'll recommend it to her. Thanks for reminding me how good it is.

Reply to this discussion