OTP codes for my US account sent to unknown foreign country phone
Monday evening at about 7:45 I received an email written in German from Amazon.de. I translated the email Tuesday morning and posted the translated bolded version below this morning (Wednesday) after xxxx’ing out my personal details. After I translated the email yesterday, I then tried to login into my account and could not because the OTP code was not being sent to my phone. After the third try I was given the option to choose another OTP access number. Surprise, surprise, the default phone number had been changed to the same German phone number as shown in the email below.
From: Amazon <account-update@amazon.de)
To: (my correct email address)
“Thank you for visiting Amazon.de!
The details for your mobile phone have been successfully changed at your request: +4915510017008
Check out My Account on Amazon.de to view your orders, make changes to orders that haven't yet shipped, update your subscriptions, and more.
If you wish to contact us, please understand that we can only share order information with the email address provided under "My Account".
Thank you again for visiting Amazon.de.”
For the record: We are a family owned and operated company located in the US and have never ordered anything from Amazon.de or tried to open an Amazon.de account or have any German family members or friends.
My questions and comments:
1. How is an employee of Amazon.de able to access my US account and make changes to the security settings governing the release of OTP codes?
2. We have gone through the Inform process like other store owners and our correct legal detailed information is shown in our US account. Nothing in that account would lead anybody to think we were in any way associated with Amazon.de or have any German ties. Do Amazon.de reps actually make an effort to verify the information given by persons who want to change security settings on an account
3. I have not opened a case yet because, at this point, I’m not sure I can trust Amazon.de to actually follow through. This is a serious breach and needs a serious effort by Amazon.com to figure out how this happened.
OTP codes for my US account sent to unknown foreign country phone
Monday evening at about 7:45 I received an email written in German from Amazon.de. I translated the email Tuesday morning and posted the translated bolded version below this morning (Wednesday) after xxxx’ing out my personal details. After I translated the email yesterday, I then tried to login into my account and could not because the OTP code was not being sent to my phone. After the third try I was given the option to choose another OTP access number. Surprise, surprise, the default phone number had been changed to the same German phone number as shown in the email below.
From: Amazon <account-update@amazon.de)
To: (my correct email address)
“Thank you for visiting Amazon.de!
The details for your mobile phone have been successfully changed at your request: +4915510017008
Check out My Account on Amazon.de to view your orders, make changes to orders that haven't yet shipped, update your subscriptions, and more.
If you wish to contact us, please understand that we can only share order information with the email address provided under "My Account".
Thank you again for visiting Amazon.de.”
For the record: We are a family owned and operated company located in the US and have never ordered anything from Amazon.de or tried to open an Amazon.de account or have any German family members or friends.
My questions and comments:
1. How is an employee of Amazon.de able to access my US account and make changes to the security settings governing the release of OTP codes?
2. We have gone through the Inform process like other store owners and our correct legal detailed information is shown in our US account. Nothing in that account would lead anybody to think we were in any way associated with Amazon.de or have any German ties. Do Amazon.de reps actually make an effort to verify the information given by persons who want to change security settings on an account
3. I have not opened a case yet because, at this point, I’m not sure I can trust Amazon.de to actually follow through. This is a serious breach and needs a serious effort by Amazon.com to figure out how this happened.
0 Antworten
Connor_Amazon
Hi @wfd878
Connor here from Amazon, I understand how frustrating and concerning this situation can be when you did not request to make any changes to your phone number.
I want to ensure you that our support agents or partner teams do not have the ability to change or update your account details.
Did you receive any recent e-mails asking you to verify or update your information by any chance?
Scammers can imitate email addresses and communication styles to send what appears as legitimate Amazon emails.
Check Message Center
If you receive an email claiming to be from Amazon and are unsure if it’s from us, visit Message Center and your support case lobby to view all email correspondence sent by Amazon. If the email does not appear in Message Center, then it was not sent by Amazon.
Other common indicators that an email you have received could be fraudulent include:
Misspellings or added/substituted characters in the sender address. Legitimate Amazon emails contain 'Amazon.com'. Common email providers will show the Amazon smile logo icon in their inbox when Amazon is the actual sender. Visit BIMI to find out which email providers have enabled our brand logo to be displayed.
Typos, grammatical errors, or links to websites that resemble Amazon, but aren’t Amazon. Legitimate Amazon websites have a dot '.' before 'Amazon.com' such as https://'something'.Amazon.com.
Links to IP addresses such as http://123.456.789.123/Amazon.com.
In your current situation, I do advise that you reach out to seller support directly as soon as possible. Unauthorized phone number changes can lead to serious account issues and misuse.
Please let me know if you have contacted seller support and share the case ID here so that we can review it and escalate further if needed.
Thank you,
Connor
