Amazon Employee Data Breached in MOVEit Attack Fallout: Over 2.8 Million Records Leaked by Hackers
Amazon has confirmed an employee data breach following the massive MOVEit cyberattacks, after threat actor "Nam3L3ss" leaked over 2.8 million lines of employee data, including contact details and office locations, stolen through a third-party vendor. This attack is part of a larger breach that has impacted dozens of global companies through a vendor exploit.
- Breach Confirmation: Amazon verifies a leak of employee contact information, stolen through a third-party vendor affected in the May MOVEit attacks.
- Sensitive Data Protection: Amazon reports no sensitive data like Social Security numbers or financial details were exposed.
- Scope of Impact: The threat actor claims additional leaks involving companies like Lenovo, HP, Delta, and Metlife, totaling over 25 impacted organizations.
- Technique and Vulnerability: Clop ransomware gang exploited a zero-day vulnerability in MOVEit’s secure transfer platform, leading to extensive data exfiltration and subsequent leaks.
- Global Fallout: MOVEit breaches affected hundreds of organizations and millions of people worldwide, with ongoing consequences for corporate and government entities.
The Amazon breach underscores the risks associated with third-party vendor security and the ongoing repercussions of the MOVEit data theft campaign. As attackers leverage vulnerabilities in secure transfer solutions, businesses must prioritize resilient vendor management and proactive security to protect sensitive data.
Comment(s)
Categories
- Other (42)
- Ransomware (127)
- Events and News (26)
- Features (45)
- Security (430)
- Tips (79)
- Google (22)
- Achievements (9)
- Products (33)
- Activation (7)
- Dealers (1)
- Bank Phishing (42)
- Malware Alerts (194)
- Cyber Attack (221)
- Data Backup (11)
- Data Breach (79)
- Phishing (139)
- Securty Tips (1)
- Browser Hijack (16)
- Adware (15)
- Email And Password (67)
- Android Security (56)
- Knoweldgebase (38)
- Botnet (15)
- Updates (3)
- Alert (70)
- Hacking (57)
- Social Media (7)
- vulnerability (54)
- Hacker (31)
- Spyware (8)
- Windows (6)
- Microsoft (21)
- Uber (1)
- YouTube (1)
- Trojan (2)
- Website hacks (3)
- Paytm (1)
- Credit card scam (1)
- Telegram (3)
- RAT (5)
- Bug (3)
- Twitter (2)
- Facebook (7)
- Banking Trojan (5)
- Mozilla (2)
- COVID-19 (5)
- Instagram (2)
- NPAV Announcement (5)
- IoT Security (1)
- Deals and Offers (1)
- Cloud Security (8)
- Offers (5)
- Gaming (1)
- FireFox (2)
- LinkedIn (2)
- WhatsApp (4)
- Amazon (1)
- DMart (1)
- Payment Risk (4)
- Occasion (2)
- firewall (1)
- Cloud malware (2)
- Cloud storage (2)
- Financial fraud (6)
- Impersonation phishing (1)
- DDoS (4)
- Smishing (2)
- Whale (0)
- Whale phishing (3)
- WINRAR (2)
- ZIP (2)
Recent Posts
Archive
Tags
cyber attack
phishing
data breach
ransomware
ransomeware
android malware
cyber security
financial security
malware
phishing attack
data stealing
ddos
critical vulnerability
cybercrime
trojan
twitter
cyber threat
financial fraud
phishing attacks
phishing email
microsoft
data theft
cert-in
lockbit
cyber threats
network security
india
clop gang
clop gang extorting
data security
user data leak
phishing scam
android
play store
whatsapp
clop
email phishing
pakistani hackers
cyber attack in india
independence day
cyber crime
malicious apps
december cyber attacks
phishing campaigns
server security
pakistan-backed hacker
android apps
cryptojacking
winrar
pune