Business

Amazon Says a Hacker Breached MOVEIT, Stealing Employee Data. Employee data.

Salman Ahmad
Salman Ahmad
Amazon
#image_title

(VOR News) – Amazon has verified that employee data was stolen to the extent that it was compromised as a result of a “security event” that took place at a third-party vendor. The event brought about the compromise of data.

According to a statement that was provided to TechCrunch on Monday, the information that pertains to Amazon employees was revealed as a result of a data breach. This information related to Amazon employees was disclosed.

Amazon spokesman Adam Montgomery issued the statement.

When it comes to Amazon’s or Amazon Web Services (AWS) systems, there have been no security breaches that have taken place, and we have not encountered any security problems. An incident that occurred at one of our property management providers and included security was brought to our attention over the course of the investigation.

This problem had an effect on a number of the company’s customers, including Amazon, and we were informed about it. Other customers were also affected. Montgomery asserts that the only information that was disclosed was that of the work contact information of Amazon workers. As far as Montgomery is concerned, there was no further breach of security.

Among the things that were listed in this category were things like work email addresses, desk phone numbers, and the locations of buildings.

The number of employees who were affected by the security vulnerability has not been acknowledged by Amazon, nor has the total number of employees who were affected been released.

Additionally, it was stated that the third-party vendor, which was not named, does not have access to sensitive data such as Social Security numbers or financial information. This information was described as being kept confidential. The information in question was not made public. The vendor has reportedly fixed the security flaw that was responsible for the data breach that took place, according to reports that were received.

Hackers said they posted Amazon data on Breach Forums. It has been determined that the information in question is accurate as a consequence of this declaration. Additionally, the individual alleges that they have more than 2.8 million lines of data, which they allege was stolen during the mass-exploitation of MOVEit Transfer that took place the previous year.

Using the alias “Nam3L3ss,” the threat actor claims that they have disclosed information that was purportedly taken from twenty-five big corporations, as indicated in a study that was carried out by the cybersecurity company Hudson Rock. The analysis was done by Hudson Rock.

The assumption that the threat actor makes is that “the data that you have seen up to this point is less than .001% of the total data that I possess.”

This is the Amazon assertion that they make.

The public will have access to one thousand releases that have never been seen before in the history of record releases. The journal TechCrunch has attempted to get in touch with the other firms that were identified by the threat actor; however, the magazine has not yet received any additional responses to the inquiries that it has made.

It was the MOVEit breach, which took place in 2023, that was the most catastrophic breach that ever took place. The file-transfer software that was developed by Progress Software was vulnerable to a zero-day vulnerability, which allowed attackers to take advantage of the weakness and cause this breach.

More than one thousand businesses were impacted by these incursions, and it is believed that the notorious Clop ransomware and extortion ring was responsible for them. Through the utilization of ransomware, hacks were successfully carried out.

Not only did the data breach affect the Oregon Department of Transportation, which had 3.5 million pieces of information stolen, but it also affected the Colorado Department of Health Care Policy and Financing, which had four million pieces of information stolen, and Maximus, which is a giant in the United States government services contracting market, which had 11 million pieces of information stolen.

SOURCE: TC

SEE ALSO:

Bitcoin Goes Over $80,000 As Buyers Guess Whether Trump Will Run For President.

Subsidies for Electric Vehicles Cut as Consumer Interest Fades

Chewy Slides After Filing Shows 3rd-Biggest Shareholder, ‘Roaring Kitty,’ Sold His Stake

You Might Also Like

Donald Trump Asked To Pay NY Times Nearly $400,000 In Legal Costs

CrowdStrike Fires Back At Delta, Claiming The Airline Ignored Offers Of Help During Service Meltdown

2024: Starbucks And Workers United, Long At Odds, Say They’ll Restart Labor Talks

Everything Apple Announced At Today’s 2024 Hardware Event

Amazon CEO Andy Jassy’s Comments About Unions Violated Federal Law, NLRB Judge Rules

Share This Article
BySalman Ahmad
Follow:
Salman Ahmad is a seasoned freelance writer who contributes insightful articles to VORNews. With years of experience in journalism, he possesses a knack for crafting compelling narratives that resonate with readers. Salman's writing style strikes a balance between depth and accessibility, allowing him to tackle complex topics while maintaining clarity.
Previous Article Stephen Miller Trump Appoints Stephen Miller as Deputy Chief of Policy in the Incoming Government.
Next Article Huawei Huawei Technologies of China Pursues Dismissal of Criminal Charges in the United States

Build SEO Content in Minutes

Rightblogger

- Download our App -