[outages] eBay password changes -- were they attacked?

Joe Abley jabley at hopcount.ca
Tue Apr 5 15:38:13 EDT 2016


On 5 Apr 2016, at 15:29, Joe Zabramski via Outages <outages at outages.org> wrote:

> I received a very similar message from Amazon on 3/7/16.  Discussion boards seemed to indicate it was legit, however my password was never actually changed by Amazon as the e-mail indicated, nor did I ever change it manually as a result.
>  
> The e-mail also appeared legit on the headers, but now that I look at a little more closely it originated from amazonses.com <http://amazonses.com/> which is seems like it might be an e-mail service you can subscribe to?

My assumption would have been that it was a phishing attempt, and that any credentials I had shared in response to the e-mail ought to be assumed compromised immediately.

I'm not familiar with this "discussion board" approach to trusting unexpected requests for login details.


Joe

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://puck.nether.net/pipermail/outages/attachments/20160405/5bc3467c/attachment.htm>


More information about the Outages mailing list