https://www.desidime.com/discussions/amazon-account-hacked-fb86beae-a4b0-46ea-8463-bb207cce1441?page=1#post_8925964
Holy moly! What should I do now with my acct!?
Amazon account HACKED
- 2269
- 25
-
- Last Comment
My amazon account was hacked this evening .
I used to keep my apay balance 3000+ as i use apay for my uber rides.
For the same reason I did my best to keep my account secured, update password timely, 2 step factor authentication but still it was hacked and now temporarily blocked
The fraudsters first did some 2500 transaction from my apay balance which was refunded by Amazon within 5min as they found it suspicious and temporarily blocked my account
Fraudsters also tried to change my mobile no. And i also got this email from Amazon "Amazon Pay Later option was enabled for you with your earlier mobile number. Since you have updated your mobile number recently, this option is now disabled for you."
Now the question is how did he got access over my account bcz i never keep the same password for all apps and i have also activated 2 factor authentication
The only loophole i could see is i registered my amazon pay balance account to uber and some other trustful payment apps like Swiggy etc which I don't remember.
Expired
Top Comments
24 Comments
|
16 Dimers
- Sort By
https://www.desidime.com/discussions/amazon-account-hacked-fb86beae-a4b0-46ea-8463-bb207cce1441?page=1#post_8925969
Having 15k+ in my ac
A worrying factor.....
https://www.desidime.com/discussions/amazon-account-hacked-fb86beae-a4b0-46ea-8463-bb207cce1441?page=1#post_8925970
The last thing I did with my amazon account is that I booked uber ride at 6 pm
And received this 2500 fraud transaction message at 9 pm
Is there any connection btw my uber and Amazon account to this fraud.
https://www.desidime.com/discussions/amazon-account-hacked-fb86beae-a4b0-46ea-8463-bb207cce1441?page=1#post_8925972
I came to know about this fraud only when I received a message from Amazon about 2500 successful transactions and another message of 2500 refund
https://www.desidime.com/discussions/amazon-account-hacked-fb86beae-a4b0-46ea-8463-bb207cce1441?page=1#post_8925989
ASH13 wrote:
I came to know about this fraud only when I received a message from Amazon about 2500 successful transactions and another message of 2500 refund
Can you check both Uber and Swiggy apps for any Rs 2500 transactions or refunds initiated?
Also, did you select 2-step authentication using SMS or 3rd party app such as Google/Microsoft Authenticator?
https://www.desidime.com/discussions/amazon-account-hacked-fb86beae-a4b0-46ea-8463-bb207cce1441?page=1#post_8926000
ASH13 wrote:The thing is that uber can compromised and some other u used. Take example, if i have access to one your apps which u have linked apay, threading nd leeching can happen. People earn money from this. Also when u are linking your apb to any other 3rd party app, you tap agree on consent.
The last thing I did with my amazon account is that I booked uber ride at 6 pm And received this 2500 fraud transaction message at 9 pm Is there any connection btw my uber and Amazon account to this fraud.
https://www.desidime.com/discussions/amazon-account-hacked-fb86beae-a4b0-46ea-8463-bb207cce1441?page=1#post_8926014
Le fraudsters to AMAZON:
https://www.desidime.com/discussions/amazon-account-hacked-fb86beae-a4b0-46ea-8463-bb207cce1441?page=1#post_8926036
Similar cases were reported before this yours is interesting since 2-factor authentication is enabled and through linked apps one cannot access your account (most definitely not when OTP / Authenticator code is required for login & changed contact number)
Edit: Last time when something similar happened (Croma GVs via wallet balance), the culprit was found to be modded amazon app
Edit: Last time when something similar happened (Croma GVs via wallet balance), the culprit was found to be modded amazon app
https://www.desidime.com/discussions/amazon-account-hacked-fb86beae-a4b0-46ea-8463-bb207cce1441?page=1#post_8926067
Rooted device bro ?
Any app installed from unknown sources ?
Using any free proxy server ?
https://www.desidime.com/discussions/amazon-account-hacked-fb86beae-a4b0-46ea-8463-bb207cce1441?page=1#post_8926071
This is very scary as a lot is linked to our Amazon account. Did you download any new apps recently which might be compromised?
https://www.desidime.com/discussions/amazon-account-hacked-fb86beae-a4b0-46ea-8463-bb207cce1441?page=1#post_8926081
Someone ordered in amazon.uk using my Indian amazon account 
https://www.desidime.com/discussions/amazon-account-hacked-fb86beae-a4b0-46ea-8463-bb207cce1441?page=1#post_8926095
Scary stuff if it was hacked despite 2-factor authentication! Better to move balance to a bank account I am starting to think.
Btw computer security expert, Microsoft, no longer recommends changing passwords frequently as a security measure: https://arstechnica.com/information-technology/... They say it's an obsolete mitigation
https://www.desidime.com/discussions/amazon-account-hacked-fb86beae-a4b0-46ea-8463-bb207cce1441?page=1#post_8926134
Partially relevant question: which city do you live in?
https://www.desidime.com/discussions/amazon-account-hacked-fb86beae-a4b0-46ea-8463-bb207cce1441?page=1#post_8926144
2 Step verification enable karne chaiye hamesha
https://www.desidime.com/discussions/amazon-account-hacked-fb86beae-a4b0-46ea-8463-bb207cce1441?page=1#post_8926150
One more possibility - Uber driver does not end the trip on completion, knowingly or unknowingly, keeps on traveling with the trip in progress. When amount reaches 2500, or driver reaches his destination, then ends the trip at 9 pm. The total amount then gets deducted by Uber for this ghost trip.
My imagination though, happened with me once and I thought my Amazon account hacked
https://www.desidime.com/discussions/amazon-account-hacked-fb86beae-a4b0-46ea-8463-bb207cce1441?page=1#post_8926220
Gulag-Survivor wrote:Same happened with me during first COVID lockdown. It was due to app installed from unknown source (i think so). Looter bought some GV using my pay balance, Amazon has refunded the same later after complaining.Rooted device bro ?
Any app installed from unknown sources ?
Using any free proxy server ?
https://www.desidime.com/discussions/amazon-account-hacked-fb86beae-a4b0-46ea-8463-bb207cce1441?page=1#post_8926281
I once installed an Netflix Mod app.(I installed it, opened the app once and left it there). Just after a few days somebody used my Amazon Pay balance to pay some electricity bills. Amazon pay CC is not co-operative at that time and only a strong post on Twitter tagging their CC worked
https://www.desidime.com/discussions/amazon-account-hacked-fb86beae-a4b0-46ea-8463-bb207cce1441?page=1#post_8926322
remove access to other apps like uber swiggy magicpin
https://www.desidime.com/discussions/amazon-account-hacked-fb86beae-a4b0-46ea-8463-bb207cce1441?page=1#post_8926327
ASH13 wrote:your uber or email account hacked
The last thing I did with my amazon account is that I booked uber ride at 6 pm And received this 2500 fraud transaction message at 9 pm Is there any connection btw my uber and Amazon account to this fraud.
https://www.desidime.com/discussions/amazon-account-hacked-fb86beae-a4b0-46ea-8463-bb207cce1441?page=1#post_8926331
aam_aadmi wrote:No I got the receipt on uber after the ride Which is just 131 rsOne more possibility - Uber driver does not end the trip on completion, knowingly or unknowingly, keeps on traveling with the trip in progress. When amount reaches 2500, or driver reaches his destination, then ends the trip at 9 pm. The total amount then gets deducted by Uber for this ghost trip.
My imagination though, happened with me once and I thought my Amazon account hacked
https://www.desidime.com/discussions/amazon-account-hacked-fb86beae-a4b0-46ea-8463-bb207cce1441?page=1#post_8926343
The only thing I can add to this is
The uber app is used by my mom in her own mobile phone as it's easy to pay , no need to carry cash or change
That's why I added my amazon pay account to my mom uber account
https://www.desidime.com/discussions/amazon-account-hacked-fb86beae-a4b0-46ea-8463-bb207cce1441?page=1#post_8926350
aam_aadmi wrote:OMG eee to bahut dangerwa haiOne more possibility - Uber driver does not end the trip on completion, knowingly or unknowingly, keeps on traveling with the trip in progress. When amount reaches 2500, or driver reaches his destination, then ends the trip at 9 pm. The total amount then gets deducted by Uber for this ghost trip.
My imagination though, happened with me once and I thought my Amazon account hacked
https://www.desidime.com/discussions/amazon-account-hacked-fb86beae-a4b0-46ea-8463-bb207cce1441?page=1#post_8970107
ASH13 wrote:
I came to know about this fraud only when I received a message from Amazon about 2500 successful transactions and another message of 2500 refund
Hope you have revoked access of merchants, apps to your Amazon (wallet) account.
If not then kindly do so https://amazon.in/ap/adam. IF YOU DO NOT FEEL SAFE CLICKING IT, THEN PLEASE DO NOT CLICK.
Instead you can manually type
》》 amazon DOT in FORWARD'SLASH ap SLASH adam 《《
.
As per routine and since back in 2013, phone number on account was not a compulsion.. I never keep any RMN.
So there is no scope for multi factor authentication.. based on RMN.. for my number.
.
I do not even have much 'gifts and credits' balance usually.
.
But during Covid-19 years... someone surely from some internal teams or temp hiring in Amazon vendor-operated customer service call centres... managed to replace my email address.
.
Infuriating as it is... Amazon is least bothered to have any control on its vendors or even direct hired.. but temporary staff.
They at most restore the account credentials or internally lodge a token 'trouble ticket'.
But no conclusion ever comes from it.
.
.
Kindke or Digital content support teams.. the b#&%€¥s even deleted my legitimate shipping addresses.
(IN nine years... one can have N number of relatives or friends.. to whom one gifts).
It is my choice.. if system allows.. I can keep 100 million shipping addresses .
.
But the bozos in or outside India, working in different teams and at that time.. logging in into specific 'skill' (Amazon team/ function) can get unbridled access to accounts and do whatever the heck they want.
Some rogue ex employees/ temp employees have and still do take control of temporarily or permanently banned/ suspended accounts.
.
They know.. which form they need to fill or ehat verbiage/reasoning or 'code' (issue) to select.
.
You might have N thousand pay balance and innocently contact CSD.
.
But agents first deflect you.
Then have froends or cousins reconnect on call.. posing aa the customer.
Then on that call.. they raise escalations.. have the account unblocked.
.
Then the fake customer (their own people).. ask for the e-mail or RMN reset.
Account permanently hijacked.
Annotations made by the (internal) hijacker.. that you (real customer) is actually a fraud caller.
Click here to reply
Reply
Edit: Last time when something similar happened (Croma GVs via wallet balance), the culprit was found to be modded amazon app
One more possibility - Uber driver does not end the trip on completion, knowingly or unknowingly, keeps on traveling with the trip in progress. When amount reaches 2500, or driver reaches his destination, then ends the trip at 9 pm. The total amount then gets deducted by Uber for this ghost trip.
My imagination though, happened with me once and I thought my Amazon account hacked