Massive Hack: Amazon Hacked, Employee Data Leaked
A serious security incident has hit Amazon after a hacker gained access to sensitive employee information through a third-party provider. The attack exposed the company’s employment data, though the company maintains that critical information such as Social Security numbers remains secure.
The leak was uncovered when a hacker, identifying himself as “Nam3L3ss,” posted on BreachForums — a well-known hacking site — more than 2.8 million records he claimed to have obtained during a massive attack on the MOVEit transportation system. The cybercriminal threatened to expose data from not only Amazon, but also 25 other major organizations.
"What I've seen so far is nothing. Barely 0.001% of what I have," the hacker warned, promising to "release 1,000 more releases" of never-before-seen information.
Amazon spokesman Adam Montgomery sought to provide peace of mind by stressing that both Amazon and AWS systems remain secure. “Only essential business contact information, such as company emails, office phones and building locations, was compromised,” he said.
Cybersecurity firm Hudson Rock was the first to warn of the severity of the attack, which could escalate in the coming weeks, according to the hacker’s threat. The incident once again raises the debate about the security of corporate data and the risks of outsourcing critical services without adequate controls.