Tech and Science

Amazon confirms employee data stolen after hacker claims MOVEit breach

Amazon confirms employee data stolen after hacker claims MOVEit breach

Amazon Confirms Employee Data Compromised in Third-Party Vendor Security Event

Amazon has recently confirmed that employee data was compromised following a “security event” at a third-party vendor. In a statement provided to JS by Amazon spokesperson Adam Montgomery, it was revealed that employee information was impacted by a data breach.

Montgomery stated, “Amazon and AWS systems remain secure, and we have not experienced a security event. We were notified about a security event at one of our property management vendors that impacted several of its customers including Amazon. The only Amazon information involved was employee work contact information, such as work email addresses, desk phone numbers, and building locations.”

Although Amazon did not disclose the exact number of employees affected by the breach, it was emphasized that the third-party vendor did not have access to sensitive data like Social Security numbers or financial information. Additionally, the vendor addressed the security vulnerability responsible for the breach.

The confirmation of the data breach comes in the wake of a threat actor claiming to have leaked data stolen from Amazon on BreachForums. The individual, operating under the alias “Nam3L3ss,” alleges to possess over 2.8 million lines of data obtained during the previous year’s mass-exploitation of MOVEit Transfer.

“What you have seen so far is less than .001% of the data I have. I have 1,000 releases coming never seen before,” the threat actor asserted.

Furthermore, cybersecurity firm Hudson Rock reported that “Nam3L3ss” has purportedly published data taken from 25 major organizations, including Amazon, McDonald’s, HSBC, HP, and potentially others. JS has reached out to these organizations for comment but has not received any responses yet.

See also  Black Mirror returns full of delights and disappointments

The MOVEit breach, characterized by attackers exploiting a zero-day vulnerability in Progress Software’s file-transfer software, marked one of the largest hacks of 2023. Allegedly orchestrated by the Clop ransomware and extortion gang, the hacks impacted over 1,000 organizations, with notable targets including the Oregon Department of Transportation, the Colorado Department of Health Care Policy and Financing, and Maximus.

TAGGED:
Share This Article
Previous Article ‘We Were the Lucky Ones’ Star Eva Feiler Signs With Impression ‘We Were the Lucky Ones’ Star Eva Feiler Signs With Impression
Next Article Trump Expected To Make It Harder For Workers To Get Overtime Pay And Benefits Trump Expected To Make It Harder For Workers To Get Overtime Pay And Benefits
Leave a comment

Leave a Reply

Your email address will not be published. Required fields are marked *

Popular Posts

Aurora, Colorado, pours $10 million more into police as a struggles to crack down on Tren de Aragua and other migrant crime

Aurora, Colorado, a suburb of Denver, is currently grappling with a surge in crime, particularly

Soda taxes don’t just affect sales. They help change people’s minds.

In recent years, there has been a significant shift in public attitudes towards sugary beverages,

Is Tony Finau skipping the inaugural Black Desert Championship for coaching duties? 

Tony Finau, the talented American golfer, has decided to skip the Black Desert Championship this

Norma Dumont: “I think she complains too much”

Norma Dumont, the Brazilian women bantamweight, recently shared her thoughts on the possibility of former

President Donald J. Trump Restricts the Entry of Foreign Nationals to Protect the United States from Foreign Terrorists and Other National Security and Public Safety Threats – The White House

ENHANCING NATIONAL SECURITY WITH COMMON-SENSE MEASURES: Today, President Donald J. Trump has taken a decisive