If you’ve not been contacted by Amazon directly then you probably don’t have to worry about this, but according to ZDNet some user accounts have been force-reset by the online retail giant, on the cusp of the busiest shopping season of the year.
Amazon has yet to comment on why its taking these steps. There has been speculation of some vulnerability in how passwords are stored on a Kindle or mobile app, but thanks to a posted email on reddit we now know that there was some kind of leak of user emails and passwords.
Here is the email that Amazon is sending affected users:
This is an important message from Amazon.com
At Amazon we take your security and privacy very seriously. As part of our routine monitoring, we discovered a list of email address and password sets posted online. While the list was not Amazon-related, we know that many customers reuse their passwords on several websites. We believe your email address and password set was on that list. So we have taken the precaution of resetting your Amazon.com password. We apologize for any inconvenience this has caused but felt that it was necessary to help protect you and your Amazon account.
To regain access to your Amazon customer account:
- Go to Amazon.com and click the “Your Account” link at the top of our website.
- Click the link that says “Forgot your password?”
- Follow the instructions to set a new password for your account.
Please choose a new password and do not use the same password you used with us previously. We also highly recommend that you chose a password that you are not using on any other sites. We look forward to seeing you again soon.
If you’ve received this email or have any additional information about the breach, please let your fellow forum members know.