- ‘Larry Charles’ Dangerous World of Comedy’ finds the balance between tragedy and comedy 3 Months Ago
- How to stream Michael ‘Venom’ Page vs. Paul Daley for free 3 Months Ago
- How to watch the NBA Dunk Contest 2019 online for free Today 6:50 AM
- The best new TV shows to stream this weekend Today 6:00 AM
- Bug lets Twitter save your DMs—even after you delete them Friday 7:21 PM
- Guy mansplains song to Japanese Breakfast, the female artist who wrote the song Friday 6:38 PM
- Ann Coulter’s Twitter bio links to a vulgar parody account Friday 5:22 PM
- Popular YouTube music channel gets income yanked for ‘repetitious’ content Friday 4:14 PM
- New website will endlessly generate fake faces thanks to AI Friday 3:41 PM
- Man fakes getting stood up at Outback Steakhouse Friday 3:03 PM
- FCC looks to tackle robocalls and spoofed texts Friday 2:57 PM
- How to protect yourself from the data breach that affected 744 million accounts Friday 12:56 PM
- How to stream Rob Brant vs. Khasan Baysangurov online for free Friday 12:21 PM
- No, Ocasio-Cortez doesn’t have her boyfriend on her payroll Friday 12:20 PM
- Writers want this book canceled for misgendering its protagonist Friday 12:15 PM
Eric Broder Van Dyke/Shutterstock (Licensed)
Company fails to provide details on security incident
Amazon blamed a “technical error” Wednesday after a data leak exposed an unspecified number of users’ names and emails addresses.
The online retailer, in an email sent to those affected, stated that its “website inadvertently disclosed” the personal information.
Ooookay. Disclosed it when, and to whom? Was other information associated with it, like my name? This email is more alarming than it is helpful. And sent from a "no-reply" address? Based on headers this appears to be a legit email. @amazon pic.twitter.com/sikJvX8lbk
— Adam Meyer (@apmeyer) November 21, 2018
Amazon added that the issue has since been fixed and that users are not required to take any action such as changing their password.
Although Amazon has stressed that the problem did not stem from a breach of its systems, many users are criticizing the company for failing to provide further details.
“For how long was my email address exposed? To whom was it exposed? The whole world? How did it wind up exposed? Could anyone seeing it also see orders linked to that email address?” one Twitter user asked.
Good morning, @AmazonHelp. Not to be rude, but if the email below is legit, it is unsatisfactory. For how long was my email address exposed? To whom was it exposed? The whole world? How did it wind up exposed? Could anyone seeing it also see orders linked to that email address? pic.twitter.com/xkamRjhNDB
— Dissent Doe, PhD (@PogoWasRight) November 21, 2018
Amazon also received pushback from numerous security experts, who expressed concern over the company’s lackluster response.
Amazon's legit been sending out notices saying sorry we exposed your email address. Seems likely related to this https://t.co/21cRB2dHTk… Besides the brevity, what's giving people pause is they sign the email https://t.co/KDiteRFaeR Why cap the "a" and why no https://? Strange pic.twitter.com/mwty3GmCN1
— briankrebs (@briankrebs) November 21, 2018
The issue, believed to have affected users in the U.S. as well as across Europe, comes just weeks after the company sent out a similar email.
The previous incident was related to a rogue Amazon employee who was found to be selling customer data.
Mikael Thalen is a freelance journalist based in Seattle, covering all things technology, including social media, data breaches, hackers, and more.