My partners Amazon got hacked
So this weekend my partner got a call from Amazon, there was some suspicious purchasing going on with her account and they didn't think it was her. Turns out someone on the other side of the world was trying to buy quite a few iPhones.
Anyway, the guy from Amazon said they thought it was due to her logging onto Public Wifi.
I'm curious to understand how they managed to hack into her account just by her using the public wifi, mainly so we can make sure it doesn't happen again.
I'm aware of man in the middle attacks, but I thought this was significantly harder to do with modern devices.
Now I would say that MFA was switched off for Amazon, I just assumed everyone switches this on by default, it is now on by the way. If this has been enabled would it have made their job significantly harder?