You may recall a kind of vague news item from this fall that Amazon exposed a large (but unknown) number of customer emails. The company hasn't been terribly forthcoming about what was compromised.
This morning some of my Amazon connected devices went offline and I couldn't get them back online. When I tried to log into my Amazon account, it showed the primary email address as being from a Russian domain. My own credentials didn't work.
I've notified Amazon and an associated credit card company but noticed that a lot of followup email correspondence from then was going straight to my trash folder. The email account I use is a Comcast account.
It turns out that whoever did this also compromised my Comcast email account and placed a rule in the email application to send any messages from the Amazon domain to trash. The name of the rule was simply, "r."
Why would they do that? Well, it kept me from seeing (in my inbox anyway) messages from Amazon indicating suspicious activity. There were also messages from Amazon customer Service confirming a refund for items I never ordered.
It's hard to say for sure, but it looks as if the original breach was Amazon and then the hackers followed the email trail to hack my email account. The play seems to be to get Amazon to issue fraudulent refunds, probably to an account that is not mine.
If you are an Amazon customer, I would suggest changing your password and that of any associated email accounts.
This morning some of my Amazon connected devices went offline and I couldn't get them back online. When I tried to log into my Amazon account, it showed the primary email address as being from a Russian domain. My own credentials didn't work.
I've notified Amazon and an associated credit card company but noticed that a lot of followup email correspondence from then was going straight to my trash folder. The email account I use is a Comcast account.
It turns out that whoever did this also compromised my Comcast email account and placed a rule in the email application to send any messages from the Amazon domain to trash. The name of the rule was simply, "r."
Why would they do that? Well, it kept me from seeing (in my inbox anyway) messages from Amazon indicating suspicious activity. There were also messages from Amazon customer Service confirming a refund for items I never ordered.
It's hard to say for sure, but it looks as if the original breach was Amazon and then the hackers followed the email trail to hack my email account. The play seems to be to get Amazon to issue fraudulent refunds, probably to an account that is not mine.
If you are an Amazon customer, I would suggest changing your password and that of any associated email accounts.