PSA: If you were affected by the recent Canvas hack, be on the lookout for bank/amazon fraud
Recently, all of our login information was exposed to bad actors with the Canvas hack this past finals season.
Just yesterday, I found that someone in the general area of the school had gained access to my Amazon account, added what I assume to be their own address less than 3 miles from the school (a fun fact to include in the police report), and ordered a $557 Garmin watch. I'm still negotiating with Amazon to have the charge reversed, but luckily, the bank is at least willing to charge back the amount (for now). It still sucks that this person received the item they ordered so they can resell it.
It's possible/likely that I was using the same password for Canvas as I was for Amazon (I know, I know- bad internet hygiene). So this is just a PSA: make sure you've changed all your passwords since that event, use 2-factor authentication where possible, and keep an eye on your accounts. The access to Canvas issue was resolved, but it looks like the info the hacker group accessed definitely made its way to the black market.