Amazon disclosed the cause of its employee data breach following the MOVEit attack in May 2023.

403/67 Wednesday, November 13, 2024

Amazon has disclosed a data breach that exposed employee information following the MOVEit attack in May 2023. The stolen data was taken from an external service provider partnered with the company. However, Amazon did not specify the number of employees affected by the incident. A threat actor group known as “Nam3L3ss” leaked over 2.8 million records on BreachForums, which included employee names, phone numbers, work emails, and office locations. Fortunately, no Social Security numbers or financial information were exposed.

An Amazon spokesperson confirmed that Amazon’s and AWS’s systems remain secure, with no direct attacks on the company’s systems. The leaked data only involved employee contact information, and Amazon has since patched the vulnerability to prevent future incidents.

According to an analysis by Hudson Rock, the Nam3L3ss group claimed to possess data from 25 other major organizations. While MOVEit has previously been exploited by the CL0P ransomware group, it remains unclear whether this breach is linked to CL0P or another hacker group.

Source https://securityaffairs.com/170804/data-breach/amazon-employee-data-breach-may-2023-moveit-attacks.html