SECURITY
SECURITY
SECURITY
Amazon blames ‘technical issue’ for exposing customer names and email addresses
Amazon.com Inc. has exposed customer names and email addresses in a data breach they are describing as a “technical error.”
The e-commerce giant started emailing customers affected on Tuesday, saying only that the issue has been fixed and that the affected customers did not need to change their passwords.
Amazon confirmed the “technical error” in a statement, confirming that the contents of the emails sent out and shared on social media were accurate but declined to provide any further information such as what the technical error consisted of or how many customers it may have affected.
Amazon's legit been sending out notices saying sorry we exposed your email address. Seems likely related to this https://t.co/21cRB2dHTk… Besides the brevity, what's giving people pause is they sign the email https://t.co/KDiteRFaeR Why cap the "a" and why no https://? Strange pic.twitter.com/mwty3GmCN1
— briankrebs (@briankrebs) November 21, 2018
Amazon’s U.K. office was a little more forthcoming than the head office in Seattle, telling The Register that the issue “wasn’t a breach in the sense of a hack while maintaining that the snafu is an inadvertent technical error.”
The same report noted that the Information Commissioner’s Office, the U.K. office in charge of compliance to the reporting provisions of the EU General Data Protection Regulation, seemed to indicate that it had not been informed of a data breach by Amazon, something that is required under the regulation.
“It is always the company’s responsibility to identify when U.K. citizens have been affected as part of a data breach and take steps to reduce any harm to consumers,” the office noted. “The ICO will, however, continue to monitor the situation and cooperate with other supervisory authorities where required.”
Carl Wright, chief executive officer at AttackIQ Inc., told SiliconANGLE that exposure of any type of customer data is an issue and organizations should always have a plan for continuously assessing the viability of their security controls.”
“For a company that claimed half of all online sales through Black Friday 2017 and amassed over $1 billion in sales, allowing customer emails to be exposed could affect sales, especially when competitors like Target, Walmart and Best Buy made strong pushes in e-commerce around last year’s Black Friday and Cyber Monday deals,” Wright added.
Image: Amazon
A message from John Furrier, co-founder of SiliconANGLE:
Support our mission to keep content open and free by engaging with theCUBE community. Join theCUBE’s Alumni Trust Network, where technology leaders connect, share intelligence and create opportunities.
- 15M+ viewers of theCUBE videos, powering conversations across AI, cloud, cybersecurity and more
- 11.4k+ theCUBE alumni — Connect with more than 11,400 tech and business leaders shaping the future through a unique trusted-based network.
About SiliconANGLE Media
SiliconANGLE Media is a recognized leader in digital media innovation, uniting breakthrough technology, strategic insights and real-time audience engagement. As the parent company of SiliconANGLE, theCUBE Network, theCUBE Research, CUBE365, theCUBE AI and theCUBE SuperStudios — with flagship locations in Silicon Valley and the New York Stock Exchange — SiliconANGLE Media operates at the intersection of media, technology and AI.
Founded by tech visionaries John Furrier and Dave Vellante, SiliconANGLE Media has built a dynamic ecosystem of industry-leading digital media brands that reach 15+ million elite tech professionals. Our new proprietary theCUBE AI Video Cloud is breaking ground in audience interaction, leveraging theCUBEai.com neural network to help technology companies make data-driven decisions and stay at the forefront of industry conversations.
