AfterDawn: Tech news
AfterDawn > News > Hacker releases Amazon Kindle user data after company fails to respond

Hacker releases Amazon Kindle user data after company fails to respond

Written by Andre Yoskowitz @ 13 Jul 2016 10:06 User comments (3)

Hacker releases Amazon Kindle user data after company fails to respond

A hacker going by the name Ox2Taylor released sensitive information about 80,000 Amazon Kindle users earlier this week after Amazon did not respond his warnings of a significant security risk within their servers.
Ox2Taylor says he tried to contact Amazon last week to tell them of the vulnerability but did not receive any response. He was seeking a $700 bounty from Amazon for revealing the vulnerability as well as an explanation on how to fix it. "They're a big company and they should have enough money to have the proper security defenses," he added.

In the database are usernames, passwords, address, phone number and IP address of over 80,000 users.

After a few days in which Amazon did not even acknowledge the bug, he released the whole list via a zipped file on the cyberlocker Mega. It has since been taken down. "I was trying to prove them privately but they were ignoring my warnings," he said.

Source:
DailyDot

Tags: Amazon Hacker
<Elon Musk ready to unveil part 2 of his Tesla's 'Top Secret Masterplan' >Microsoft begins reducing OneDrive storage to 5GB if you didn't opt in
Previous Next  

3 user comments

115.7.2016 21:27
Menion
Send private message to this user
Member

"He was seeking a $700 bounty" Not getting the money so throw a fit and compromise everyone elses information? Wish black hats like this could simply be disposed of, we could use a lot less of them.

217.7.2016 15:03
Bozobub
Send private message to this user
Senior Member

Perhaps, but the idiot(s) who brushed him off are also part of the equation. Oops!

323.7.2016 15:23
SomeBozo
Send private message to this user
Member

Tough issue. I wonder who and how he contacted that people at Amazon. Working in Redmond, a lot of people i know moved from Microsoft over to Amazon. I know many Amazon developers and if then knew anything about a security hole, they would normally drop everything and ensure it is fixed/patched asap. Also in general i've know a few people if/when they find security holes in a MS product, and they handle the issue properly, as this guy said he tried to do, in the end the least amount i've heard people receiving was 2K US, for finding and reporting. I can't think Amazon would be different in this regard either. The couple of incidences I knew involving MS, the people never even asked to get paid at all, it was MS that wanted to say thanks and took it upon themselves to say thanks and reward the people.

So it leaves me to wonder who this guy tried contacting, one of the outsource customer service reps in the Philippines?

Comments have been disabled for this article.

Latest news

Roomba Combo j7+ review - Clever trick allows robot vacuum finally to tackle home with rugs and carpets Roomba Combo j7+ review - Clever trick allows robot vacuum finally to tackle home with rugs and carpets (06 Jun 2023 9:19)
Roomba Combo j7+ is the very first Roomba model to combine robot vacuum with mopping features. And Roomba Combo j7+ does all that with a very clever trick, which tackles the problem with mopping and carpets. But is it any good? We found out.
Neato, the robot vacuum company, ends its operations Neato, the robot vacuum company, ends its operations (02 May 2023 3:38)
Neato Robotics has ceased its operations. American robot vacuum pioneer founded in 2005 has finally called it quits and company will cease its operations and sales. Only a skeleton crew will remain who will keep the servers running until 2028.
5 user comments
How to Send Messages to Yourself on WhatsApp How to Send Messages to Yourself on WhatsApp (20 Mar 2023 1:25)
The world's most popular messaging platform, Meta-owned WhatsApp has enabled sending messages to yourself. While at first, this might seem like an odd feature, it can be very useful in a lot of situations. ....
18 user comments
How to Enable Bluetooth on Stadia Controller How to Enable Bluetooth on Stadia Controller (11 Feb 2023 1:04)
Google shut down its streaming game service Stadia late last month and this means that some people have Stadia controllers lying around that seem to be of no use. That is fortunately not the ....
2 user comments
Guide: How to Kick Unwanted Guests from Your Netflix Account Guide: How to Kick Unwanted Guests from Your Netflix Account (26 Jan 2023 2:14)
Sharing a Netflix account with a person in a different location is possible and indeed very common, although the company doesn't necessarily enjoy this behavior from their customers. However, ....
2 user comments

Reviews

Roomba Combo j7+ review - Clever trick allows robot vacuum finally to tackle home with rugs and carpets Roomba Combo j7+ review - Clever trick allows robot vacuum finally to tackle home with rugs and carpets
Roomba Combo j7+ is the very first Roomba model to combine robot vacuum with mopping features. And Roomba Combo j7+ does all that with a very clever trick, which tackles the problem with mopping and carpets. But is it any good? We found out.
Review: Samsung Jet Bot 90 AI+ - a high-end robot vacuum cleaner Review: Samsung Jet Bot 90 AI+ - a high-end robot vacuum cleaner
Samsung's Jet Bot 90 AI+ is a top-class robot vacuum cleaner that can avoid obstacles and empty its own dust container. Here we review the product.
1 user comment
Samsung Jet Bot 80+ review - excellent robot vacuum cleaner Samsung Jet Bot 80+ review - excellent robot vacuum cleaner
We review Samsung's Jet Bot 80+ robot vacuum cleaner over a period of three months.
1 user comment

Guides

GUIDE: Wi-Fi speeds are slow? Here are some tips GUIDE: Wi-Fi speeds are slow? Here are some tips
Having problems with Wi-Fi speed and stability at home? Here are some tips to follow to alleviate the issues.
1 user comment
What IP rating for dust and water resistance means What IP rating for dust and water resistance means
An IP classification (such as IP68) is given to mobile phones, Bluetooth speakers, and other devices, but what do these classifications mean?
Guide: Create timelapse video with Android phone, using free open source app Guide: Create timelapse video with Android phone, using free open source app
Our guide details how to create a long - even a day-long - timelapse video with Android phone, using easy and free open source app.
What happens if you don't update Android? What happens if you don't update Android?
Sometimes it can be tempting to avoid updating to a new Android version. What happens if you decide to delay major updates to the OS?
HOWTO: Install Netflix App on rooted Android device HOWTO: Install Netflix App on rooted Android device
'This app is no longer compatible with your device. Contact the developers for more info.' If you are getting this message from Google Play when trying to install Netflix, then maybe this little guide can help you.

News archive

Sections:

Follow us:

© 1999-2023 AfterDawn Oy. All rights reserved
Back to Top ⇧
AfterDawn is powered by Powered by UpCloud