Amazon sent out an email yesterday, informing users that Amazon’s site had suffered a privacy breach.
While I can understand why this looks suspicious, I can confirm that it is real. (Aside from that detail, I really don’t know anything more about this than you.)
We’re contacting you to let you know that our website inadvertently disclosed your email address due to a technical error. The issue has been fixed. This is not a result of anything you have done, and there is no need for you to change your password or take any other action.
And just to be clear, I do not know that spammers got the email addresses leaked in the breach, nor am I worried about getting additional spam or phishing emails. I already get so many everyday that one more doesn’t matter.