Amazon Data Breaches: Full Timeline Through 2023

In March 2023, a ransomware group claimed to have data pertaining to Amazon Ring. Amazon denied that they had been breached, and so far, no other evidence has surfaced to substantiate the breach.

There have also been numerous breaches in Amazon Web Services (AWS) over the years, which you can read about in our article on AWS data breaches. Below, we’ll go into more detail on the full history of Amazon breaches, starting with the most recent.

March 2023: Ransomware Group Claims to Possess Amazon Ring Data

On March 13, a ransomware group called ALPHV claimed on the darkweb that they had breached Ring, Amazon’s doorbell security company. An Amazon spokesperson said that they had “no indications that Ring experienced a Ransomware event,” and in another statement noted that third-party vendor may have experienced a breach.

While it is possible this ransomware group has data pertaining to Ring customers, we have found no other evidence so far that would substantiate a data breach of Amazon Ring.

June 2022: Former Amazon Employee Convicted for Capital One Breach

In June 2022, former Amazon employee Paige Thompson was convicted for her role in the 2019 Capital One breach. While working for Amazon Web Services, Thompson exploited her knowledge of cloud server vulnerabilities at Capital One and more than 30 other companies. All told, Thompson stole the personal information of over 100 million people, including names, dates-of-birth, and social security numbers.

The defense portrayed Thompson as an ethical hacker seeking to notify companies of vulnerabilities before bad actors could exploit them. The U.S. Department of Justice argued otherwise, noting that Thompson failed to notify the companies she breached, bragged about the incident on hacker forums under the alias “erratic”, and profited from the breach by installing cryptomining software on many of the servers she hacked. As assistant U.S. attorney Andrew Friedman put it in his closing arguments, “She wanted data, she wanted money, and she wanted to brag.”

After ten hours of deliberation, a Seattle jury found Thompson guilty of wire fraud, as well as five counts of unauthorized access to a protected computer and damaging a protected computer. The jury found her not guilty of access device fraud and aggravated identity theft. Thompson could face up to 45 years in prison.

Capital One does not seem to have been free of responsibility for the incident. Finding their security practices lacking, the Office of the Comptroller of Currency fined Capital One for $80 million, and the company paid out an additional $190 million settlement in a class action lawsuit.

October 2021: Hacker Leaks Twitch Data to 4chan

On October 6, 2021, there was a major data breach to Twitch, a streaming platform owned by Amazon. An unknown attacker posted 128 gigabytes of leaked files to a 4chan message board, including Twitch’s source code, earnings numbers for streamers, and more. Though the attacker has not yet been identified, in their 4chan post they stated an activist motive:

“Their community is also a disgusting toxic cesspool, so to foster more disruption and competition in the online video streaming space, we have completely pwned them.”

In a blog post, Twitch stated that this data was exposed due to an error in Twitch’s server configuration. On October 15, Twitch reaffirmed that no passwords, login credentials, credit card numbers, or bank information was leaked in the attack. In the same blog post, Twitch stated that they were directly contacting those affected by the breach.

July 2021: EU Fines Amazon €746 Million Over GDPR Violations

In July 2021, the Luxembourg National Commission for Data Protection issued a 746 million euro fine to Amazon for allegedly violating the European Union’s General Data Protection Regulation (GDPR). According to the Commission, Amazon mishandled personal data in violation of the legal standards set by the GDPR.

In response, Amazon asserted they would appeal the fine, saying that it was “without merit” and that there had been “no data breach.”

October 2020: Customer Email Address Leaked by Malicious Employees

For the second time in 2020, disgruntled Amazon employees released a number of Amazon customer email addresses to third parties voluntarily.

The employees responsible for the insider breach were fired. While Amazon did directly email any customers that may have had their email addresses distributed to a third party, it isn’t clear precisely how many customers were impacted by the incident.

As you’ll see, internal threats present a recurring problem at Amazon. Over and over again, Amazon employees have leaked customer data and proprietary information to outside parties.

September 2020: Six People Indicted in Scheme to Bribe Amazon Employees

In September of 2020, a grand jury in Washington indicted six people on charges of bribing Amazon employees to gain an unfair advantage in Amazon’s third-party marketplace. All six of the defendants had provided consulting services to Amazon sellers, and three had sold products of their own. Through bribery and fraud, these sellers illiticly obtained customer data, made attacks against competing sellers, and restored product listings that Amazon had previously taken down.

January 2020: Employees Share Customer Contact Info with Third Party

In January 2020, Amazon caught a group of employees sharing sensitive customer data with third parties. A number of customer email addresses and phone numbers were released, though it isn’t clear precisely how many. In response, Amazon fired the employees in question.

It’s unclear whether these two incidents were connected, and Amazon has not been forthcoming with greater detail.

September 2019: Amazon Japan Personal Data and Order Histories Exposed

In late-September 2019, Amazon Japan users found themselves able to view the order histories of other shoppers. Along with purchase details, shopper names and delivery addresses were also viewable.

It isn’t entirely clear how many users of the Japanese Amazon site were impacted by the issue. After the incident made the news, Amazon announced that it resolved the problem and had contacted customers about the issue.

November 2018: Amazon Uncovers Moles Working for Third-Party Seller

In November 2018, Amazon’s security division discovered that a third-party retailer known as Krasr had paid approximately $160,000 in bribes to Amazon employees. In exchange, they sabatoged Krasr’s competitors on Amazon’s marketplace.

Amazon identified and fired seven employees who had taken money from Krasr. They referred Krasr to the FBI, but it does not appear Krasr’s owner has been arrested or charged with any crimes.

November 2018: Customer Names and Email Addresses Exposed

Just two days before Black Friday in November 2018, Amazon announced a major data breach involving customer names and email addresses. The company stated that it reached out to impacted users but didn’t disclose the extent of the breach, which it described as a technical issue that led to the accidental posting of customers’ private information on the website.

September 2018: Employees Discovered Selling Customer Data

In September 2018, the Wall Street Journal reported that Amazon employees had been illiticly handing over customer data in exchange for bribes. Employees in both China and the United States reportedly sold this data to Chinese sellers, at prices ranging from $80 to $2,000. Data included internal metrics as well as personal information, such as reviewers’ email addresses.

In May of 2018, Amazon’s security detected similar activity when they found that Amazon employees in China had been bypassing security controls, taking over customer accounts, and deleting customer reviews. These two incidents might not have been strictly related, as many of these employees appear to have been acting individually. But these kinds of internal threats have long been a persistent issue at Amazon.

May 2018: AMZReview Caught Selling Customer Data

In May 2018, Amazon discovered that a third-party service was selling Amazon customer data to outside sellers. For years, Amazon had offered sellers broad access to customer data, such as name and address. AMZReview compiled this data on a mass scale, and connected it to other customer information that had been leaked in other breaches.

AMZReview had obtained information on up to 16 million Amazon customers. But the problem was even bigger: some third-party companies had access to up to a billion orders, and Amazon found that over half of third-party developers were violating Amazon’s terms of service.

In response, Amazon tightened its controls over customer data. But they did not make any public statements about the data leak. When reporters at Wired asked, an Amazon spokesperson insisted that “There was not a data leak”, but had “no response” regarding how many customers data had been inappropriately hoovered up by third-party companies.

May 2017: Up to 24 Million Credit Card Numbers Exposed Internally

In May 2017, Amazon employees discovered a cache of American Express credit card numbers left unsecured on Amazon’s internal network. For at least several months, this credit card information was broadly available to Amazon employees. Because their audit logs only went back 90 days, it is unclear whether this openly available data was abused while sitting in the open.

July 2016: Hacker Claims to Breach 80,000 Amazon Accounts

In July 2016, a hacker identifying as #0x2Taylor claimed on Twitter to have breached an Amazon server and obtained personal information on more than 80,000 Kindle users. He threatened to leak the data if Amazon did not pay him $700. When Amazon did not pay him, he posted this information online.

However, Amazon denied that they had been breached: “We have confirmed that this information did not come from Amazon’s servers, and that the accounts in question are not legitimate Amazon customer accounts.” In this case, it’s hard to tell for sure whether or not Amazon was actually breached.

2016: Amazon Employees Spy on Customer Purchase Histories

In November 2021, Wired reported that back in 2016, it was common practice for Amazon employees to spy on customers’ purchase histories. In the words of one manager “Everybody, everybody did it.” Employees looked up the purchases of celebrities, such as Kanye West, and spied on their exes and romantic partners.

During this time, any customer service employee could look up practically any customer’s purchase history at any time. Because these access privileges were so widely distributed, it was easy for employees to abuse their power  to spy on Amazon customers.

November 2015: Amazon Resets User Passwords as a Precautionary Measure

In November 2015, Amazon forced a reset on many user’s passwords. While there does not appear to have been an actual breach, Amazon seems to have identified a credible risk and taken this security measure just in case.

December 2014: Anonymous Hackers Leak Passwords for Amazon and Other Sites

In December 2014, hackers associated with the group Anonymous leaked 13,000 usernames and passwords for Amazon, Walmart, Playstation Network, Xbox Live, and other websites. It’s unclear where or how they obtained this information, though they did state their motive: “We did for the Lulz.”

January 2012: Zappos Breach Exposes 24 Million Accounts

In January 2012, a hacker breached the servers of Zappos, an Amazon-owned online store. Although up to 24 million Zappos customers’ information was exposed in this attack, apparently Amazon accounts were not affected.

We did not find any earlier records of data breaches directly involving Amazon.

About the Author

Find Michael on LinkedIn

Michael X. Heiligenstein

Michael X. Heiligenstein is the founder and editor-in-chief of the Firewall Times. He has six years of experience in online publishing and marketing. Before founding the Firewall Times, he was Vice President of SEO at Fit Small Business, a website devoted to helping small business owners. He graduated from the University of Virginia with a degree in English and History.

8 thoughts on “Amazon Data Breaches: Full Timeline Through 2023”

  1. life in prison sould be a incentive. so they stop. hackers obviously need fear installed into their minds. just for the amount of people affected globally. to me would add up on a individual level to exceed muberous life sentances in most instances. this is far beyond a common drug dealer issue.. far beyond a common murder.. it really makes you ask the question have hackers changed hospital logs and killed people ect… has the cdc data been affect and so forth.. have police records been changed again the list goes on and on.
    everything has to be reassessed. could a common drug dealer or murder do that much damage. :/

  2. I have had a REAL problem with AMAZON SECURITY(HA! HA!) protecting my account. Since Dec 2020. My account with them has been broken so many times I finally had to shut down my entire account with them in Nov 2021. I kept getting broken into. I was being informed that my 50 -60 I-BOXES was being mailed out! I NEVER ORDER THEM. It took me HOURS to get them to understand what was going on (someone who speaks English would have really helped) In short after SPENDING HOURS!! (TRUTH) with their security person- team(?) if that is what they are called I had to shut my account down. While I was being told they had taken care of the hatcher(s) and I would not have any more problems! I WAS BROKEN INTO AGAIN (apparently by the same person with the I-Boxes because they were ordering them AGAIN ON MY ACCOUNT while the security person was on the phone with me!!) I had to shut down my account/CLOSE MY ACCOUNT, I have had hackers order a $750 cell phone ( trying this about 4 times) , a 55 inch Sony TV, two orders of I-Boxes on order that had 60 in it the 2nd order had 50 WHILE I WAS ON THE PHONE WITH AMAZON SECURITY TELLING ME THEY HAD FIXED MY PROBLEM!! Sorry Amazon I have had it with a year of fighting with the hackers AND You!! I closed my account down in Nov. 2021.

    • The problem is… Maybe you were being spoofed into believing your account was hacked when all that happens is you got a message saying something had been ordered on your account.
      I recently received a message saying something had been ordered on my account but when I checked I could not see anything had been ordered and Amazon support confirmed that nothing had been ordered.
      I dismissed the message as a hoax which it was.

      • Curtis,

        I think that you nailed it. I get emails daily asking me to confirm my bogus orders to Amazon, CVS, Walmart, etc. Other emails claim that they are confirming my order for specific orders that are also bogus.

        while I have multiple email accounts, my Yahoo Mail account is the worst. even the subject line may have emojis in it. Gmail filters such spam. My hunch is that Yahoo dumbed down their spam filter to try to get me to sign up for their premier (paid) service.

        The blatant spam messages promoting erections and emojis in the message were filtered by Yahoo prior to their promoting their paid email service that they claim is more secure.

  3. Well it appears that Amazon has hired a Hacker in their customer service dept. I contacted C.S. and spoke with rep#1 stayed on mute for 10 min then hung up on. I called a second C.S. rep and had a refund sent to me for a defective item. I checked my bank account today and saw several charges ran on my card that weren’t mine. I haven’t used the card for several days so it must have been done by Amazon. I contacted Amazon C.S. and was given no help just told they would look into it for me but everything the “supervisor” told me he was looking at was to cover up the breach. I hope you can look into this as well and help me get the word out about their bad service.
    Thank you.

  4. I have dedicated my time to do these although am not supposed to be doing but the laudable job Henry did for me worth more than what i paid for,l have never dream of getting my husband phone call details and receiving his whatsapp and text messages(not even anytime soon).The day i started receiving all his messages that was the day l promised to come back to where l saw recommendation about him and join the good people to spread and share my experience. Married women pls contact him via email: and you can text, call him on whatsapp him on +12014305865, or +17736092741, and be saved from the bondage subjected by those selfish men.

  5. Contact him for any type of hacking, he is a professional hacker that specializes in exposing cheating spouses, and every other hacking related issues. he is a cyber guru, he helps catch cheating spouses by hacking their communications like call, Facebook, text, emails, Skype, whats-app and many more. I have used this service before and he did a very good job, he gave me every proof I needed to know that my fiancee was cheating. You can contact him on his email to help you catch your cheating spouse, or for any other hacking related problems, like hacking websites, bank statement, grades and many more. he will definitely help you, he has helped a lot of people, contact him on,, and you can Text/Call &WhatsApp: +1 (773)-609-2741, or +1201-430-5865, and figure out your relationship status. I wish you the best.

  6. I’m excited to write about Henry Hacker, he is a great and brilliant hacker who penetrated my spouse’s phone without a physical installation app. And I was able to access my spouse’s phone, SMS, Whatsapp, Instagram, Facebook, Wechat, Snapchat, Call Logs, Kik, Twitter and all social media. The most amazing thing there is that he restores all phone deleted text messages. And I also have access to everything including the phone gallery without touching the phone.I can see the whole secret of my spouse. Contact him for any hacking service. He is also a genius in repairing Credit Score, increasing school grade, Clear Criminal Record etc. His service is fast. Contact:, and you can text, call him on whatsapp him on +12014305865, or +17736092741..


Leave a Comment