Table of Contents
November 12, 2024
|4m
MOVEit Breach Exposes 20 Million Employee Data
In a startling development that underscores the persistent impact of the 2023 MOVEit vulnerability, several major corporations, including Amazon, have confirmed data breaches affecting their employees. This recent revelation highlights the far-reaching consequences of supply chain attacks and the critical importance of robust third-party vendor security.
Amazon, one of the world's largest tech giants, has acknowledged that employee work contact information was exposed through a third-party property management vendor. The compromised data includes work email addresses, desk phone numbers, and building locations. Amazon spokesperson Adam Montgomery assured that sensitive information such as Social Security numbers and financial details remained secure, and the company's core systems, including Amazon Web Services (AWS), were unaffected.
The breach is part of a larger cyberattack campaign exploiting the MOVEit Transfer vulnerability (CVE-2023-34362), first identified in May 2023. This SQL injection flaw allowed cybercriminals to bypass authentication and access sensitive data across numerous organizations globally.
A hacker group known as "Nam3L3ss" has claimed responsibility for leaking over 2.8 million lines of data from various companies, including Amazon, McDonald's, HSBC, Delta Airlines, and HP. The leaked datasets reportedly contain employee information such as full names, titles, phone numbers, and email addresses.
|
Company
|
Number of Employees
|
|
Amazon
|
28,61,111
|
|
MetLife
|
5,85,130
|
|
Cardinal Health
|
4,07,437
|
|
HSBC
|
2,80,693
|
|
1,24,464
|
|
|
US Bank
|
1,14,076
|
|
HP
|
1,04,119
|
|
Canada Post
|
69,860
|
|
Delta
|
57,317
|
|
Applied Materials
|
53,170
|
|
Leidos
|
52,610
|
|
Schwab
|
49,356
|
|
3M
|
48,630
|
|
Lenovo
|
45,522
|
|
Bristol-Myers Squibb
|
37,497
|
|
OmnicomGroup
|
37,320
|
|
TIAA
|
23,857
|
|
UBS
|
20,462
|
|
Westinghouse
|
18,193
|
|
URBN
|
17,553
|
|
Rush University
|
15,853
|
|
BT
|
15,347
|
|
dsm-firmenich
|
13,248
|
|
City National Bank
|
9,358
|
|
McDonald's
|
3,295
|
(Source: Bleepingcomputer)
The scale of this breach is staggering, with Amazon alone reporting 2,861,111 records leaked. Other significantly impacted companies include MetLife, with 585,130 records exposed. Bleepingcompute has made a list of companies and the number of employee data compromised. This massive data exposure poses a severe risk for potential phishing attacks, identity theft, and social engineering schemes targeting employees of these organizations.
The MOVEit breach has affected thousands of organizations worldwide, with over 20 million individuals impacted. Despite being patched in 2023, the vulnerability continues to have far-reaching effects, demonstrating the persistent nature of such security flaws.
This incident serves as a stark reminder of the ongoing risks businesses face when relying on third-party services. It emphasizes the critical need for:
Rigorous vetting and continuous monitoring of third-party vendors' security practices.
Implementing robust patch management systems to address vulnerabilities promptly.
Conducting regular security audits of data transferred through file transfer services.
Enhancing employee awareness about potential phishing and social engineering attempts using leaked information.
As the repercussions of the MOVEit breach continue to unfold, cybersecurity experts warn that its impact could persist for months or even years. This event underscores the importance of a proactive and comprehensive approach to cybersecurity, especially in an era where supply chain attacks are becoming increasingly sophisticated and frequent.
The incident also highlights the need for greater transparency and faster disclosure of data breaches. Many affected organizations, including Amazon, only recently confirmed the breach, months after the initial vulnerability was exploited.
As businesses and individuals grapple with the aftermath of this massive data leak, the cybersecurity community must remain vigilant. The MOVEit breach serves as a cautionary tale, emphasizing the need for constant evolution in security practices to stay ahead of emerging threats in our interconnected digital landscape.
Visit our website to get cybersecurity updates like this, thesecmaster.com, and our social media page on Facebook, LinkedIn, Twitter, Telegram, Tumblr, Medium, and Instagram and subscribe to receive tips like this.
You may also like these articles:
How to Fix CVE-2023-35708- A Critical SQL Injection Vulnerability in MOVEit Transfer Solution?
How to Fix CVE-2023-36934- A Critical SQL Injection Vulnerability in MOVEit Transfer Solution?
Managing Data Retention: Developing a Secure Information Lifecycle Strategy
15 Different Types of Social Engineering Techniques Hackers Use to Hack the Victims
What is Data Breach and Where to Report Cybercrime in the United States?
Anthony Denis
Anthony Denis a Security News Reporter with a Bachelor's in Business Computer Application. Drawing from a decade of digital media marketing experience and two years of freelance writing, he brings technical expertise to cybersecurity journalism. His background in IT, content creation, and social media management enables him to deliver complex security topics with clarity and insight.
