- Man flamed after admitting he called police on Target employee over a toothbrush Today 9:10 AM
- Netflix’s ‘Vivir Dos Veces’ searches for a last chance at first love Today 8:00 AM
- Camila Cabello must do more about her racist history Today 6:00 AM
- Instagram and Facebook are reportedly blocking queer ads Friday 8:58 PM
- Review: Tyler Perry’s ‘A Fall From Grace’ is both nonsensical and utterly predictable Friday 6:48 PM
- Is Hulu censoring the Iran episode of Anthony Bourdain’s ‘Parts Unknown’? Friday 6:05 PM
- Trump admin celebrates Michelle Obama’s birthday by proposing rollback of her signature initiative Friday 4:01 PM
- TSA apologizes after agent grabs indigenous woman’s braids, says ‘giddyup’ Friday 3:28 PM
- Blue Bell ice cream licker pleads guilty Friday 2:54 PM
- 7 fortune-telling sites for when you’re bored Friday 2:21 PM
- Governor bans sex puns on free condom wrappers Friday 2:16 PM
- Is Justin Bieber’s ‘Yummy’ video secretly about Pizzagate? Friday 1:01 PM
- Woah Vicky rips out her hair in botched cultural appropriation attempt Friday 12:30 PM
- Here’s an exclusive look at ‘Weathering With You’ Friday 11:57 AM
- TikTok dudes are dipping their balls in soy sauce for ‘science’ Friday 11:49 AM
Amazon blamed a “technical error” Wednesday after a data leak exposed an unspecified number of users’ names and emails addresses.
The online retailer, in an email sent to those affected, stated that its “website inadvertently disclosed” the personal information.
Ooookay. Disclosed it when, and to whom? Was other information associated with it, like my name? This email is more alarming than it is helpful. And sent from a "no-reply" address? Based on headers this appears to be a legit email. @amazon pic.twitter.com/sikJvX8lbk— Adam Meyer (@apmeyer) November 21, 2018
Amazon added that the issue has since been fixed and that users are not required to take any action such as changing their password.
Although Amazon has stressed that the problem did not stem from a breach of its systems, many users are criticizing the company for failing to provide further details.
“For how long was my email address exposed? To whom was it exposed? The whole world? How did it wind up exposed? Could anyone seeing it also see orders linked to that email address?” one Twitter user asked.
Good morning, @AmazonHelp. Not to be rude, but if the email below is legit, it is unsatisfactory. For how long was my email address exposed? To whom was it exposed? The whole world? How did it wind up exposed? Could anyone seeing it also see orders linked to that email address? pic.twitter.com/xkamRjhNDB— Dissent Doe, PhD (@PogoWasRight) November 21, 2018
Amazon also received pushback from numerous security experts, who expressed concern over the company’s lackluster response.
Amazon's legit been sending out notices saying sorry we exposed your email address. Seems likely related to this https://t.co/21cRB2dHTk… Besides the brevity, what's giving people pause is they sign the email https://t.co/KDiteRFaeR Why cap the "a" and why no https://? Strange pic.twitter.com/mwty3GmCN1— briankrebs (@briankrebs) November 21, 2018
The issue, believed to have affected users in the U.S. as well as across Europe, comes just weeks after the company sent out a similar email.
The previous incident was related to a rogue Amazon employee who was found to be selling customer data.
Mikael Thalen is a tech and security reporter based in Seattle, covering social media, data breaches, hackers, and more.