OT - AMAZON account hacked 2X this week

Help!

My amazon account was hacked earlier this week so I contacted amazon and reset my password. A couple of days later blammo - I get hacked again. This time the (pardon me) foreign sounding lady can not identify my email addy or other info. She did not exactly make me feel vey confident in her abilities as a service rep nor were we able to communicate very well which adds to the stress and frustration. What do I do?

 

Probably from all that counterfeit oil we all bought....

But as Jason mentioned, what tipped you off that something was amiss?

 

The first time I got an email saying my password had changed - but it wasn't me.

The second time, no email notification. Today I tried to buy a birthday card for my cousin and could not sign in, someone else's email addy was in there and now when I call customer service amazon does not recognize my email addy.

 

Just got off the phone with amazon. They are freezing my account for a couple of days until they get it fixed. I had to be a bit of a prick and insist on speaking with a supervisor so as to cut through the BS where they take you through the flow chart and ask you a bazillion stupid questions.

 

Buddy of mine had this happen, even the part where his password was reset and rehacked. One of the support people told him to enable 2 step authorization/verification where they send your cell phone a code that you have to enter first . I believe you can set it so that you authorize a device or have to get the code before every purchase. Either way its free and its minimum headache VS the alternatives...

 

No matter the site, enable 2 factor authentication and leave it on so it's required for every order. Reality of our times.

 

The first email telling you your password was changed may have started this if it wasn't really from Amazon and you clicked on any links in it to reset your password. Lots of fishing emails trying to get you to click on links that look very official.

Never click on links in emails to verify information, always go direct to the website on your own.

 

True.

 

Some times you have to be assertive to get the supervisor on the phone.

 

Agree. A lot of them are quite good. My fav is "PayPal" one I get every month for my "monthly statement," and occasional password reset from "Citibank"...haven't been with Citi for 20 years. Crooks have been playing the "shell game" with us forever...now with current technologies. As always, stay alert. Sometimes there's satisfaction in outwitting them, and occasionally humor, like a current phone# spoof where spoofed phone# shows "out of service" on caller ID...

At a minimum, "hover" mouse pointer over email sender to see if it's actual website or one with something extra in address. As said, best to go directly to website.