The expose revealed a scam that affected independent Amazon users and vendors in illegal and unethical activities
The opsec-illiterate scammer mistakenly exposed over 13 million records through an open ElasticSearch database, according to ComputerWeekly.com.
The 7GB data exposed related to over 200,000 people. Researchers carrying out duties in place of antivirus specialists SafetyDetectives discovered the server on 1st March 2021. The researchers then observed the server after which they locked it down on 6th March. While the server appeared to be physically based in China, the data obtained involved people based in the US and Europe.
The scammers obtained fake reviews on Amazon by sending links to people ready to leave false product reports, often a 5-star rating. They would then purchase the products and send the vendor a link to their Amazon link. Since this link is compromised, vendors would end up requesting a refund via PayPal and also get to retain the product purchased. The scammers would make the process seem legitimate hence avoiding scrutiny from Amazon’s moderators.
The scammers used data including email addresses, contact details and phone numbers linked to Telegram and WhatsApp accounts to get in touch with reviewers. Fraudulent reviewers’ data obtained included several Personal identification information (PII) such as PayPal accounts data, 75,000 Amazon links, usernames containing real identification and 232,664 Gmail Addresses.
We’ve reported that scams targeting businesses increased by nearly a third.