Amazon Confirms Employee Data Was Hacked

Amazon has confirmed a data breach involving employee information, stemming from the May 2023 MOVEit cyberattacks. The stolen data was leaked on a hacking forum by a threat actor known as Nam3L3ss, who claims to have published over 2.8 million lines of Amazon employee details, including names, work contact information, building locations, email addresses, and more.

Responding to the incident, Amazon spokesperson Adam Montgomery explained that the breach was tied to a third-party service provider, not Amazon’s own systems. “Amazon and AWS systems remain secure, and we have not experienced a security event,” Montgomery said. “We were notified about a security event at one of our property management vendors that impacted several of its customers, including Amazon.”

Montgomery emphasized that the compromised information was limited to employee work contact details, such as email addresses, desk phone numbers, and building locations. No sensitive data, such as Social Security numbers, government IDs, or financial information, was accessed or stolen. He added that the vendor has since patched the vulnerability that allowed the attack.

Nam3L3ss, the hacker behind the breach, has also released data from 25 other companies, acknowledging that some of the information was sourced from ransom gangs’ leak sites and misconfigured cloud storage. “I download entire databases from exposed web sources, including MySQL, Postgres, SQL Server databases, and backups, then convert them to CSV or other formats,” the hacker stated. “DO NOT ask me for access to my storage. At present, I have well over 250TB of archived database files.”

The incident underscores the risks of third-party vulnerabilities and the growing sophistication of cyberattacks targeting supply chains.