STE WILLIAMS

Amazon.com appears to be asking some of its customers to reset passwords after a breach of some sort.

The online bazaar sent cryptic emails to some of its account holders warning them that their passwords were blabbed in some way, and therefore have to be changed, according to ZDNet.

“We recently discovered that your password may have been improperly stored on your device or transmitted to Amazon in a way that could potentially expose it to a third party. We have corrected the issue to prevent this exposure,” Amazon is reported to have told customers.

Amazon says it has no evidence that the passwords were abused, and had reset the credentials out of an “abundance of caution.”

The company has not yet confirmed the reset to any media, including El Reg.

Let’s not rush to judgement here: Amazon has oodles of partners and it could well be that the passwords were transmitted in clear text from a third party application or service, a suggestion we make given the seemingly small number of resets. Bezos’ book barn may not have been compromised in any way. ®

Sponsored:
Go beyond APM with real-time IT operations analytics

Article source: http://go.theregister.com/feed/www.theregister.co.uk/2015/11/25/amazon_password_reset/