Topics
Latest
AI
Amazon
Image Credits:Marcos del Mazo/LightRocket / Getty Images
Apps
Biotech & Health
Climate
Cloud Computing
Commerce Department
Crypto
Enterprise
EVs
Fintech
Fundraising
Gadgets
Gaming
Government & Policy
Hardware
layoff
Media & Entertainment
Meta
Microsoft
seclusion
Robotics
Security
Social
Space
startup
TikTok
transit
Venture
More from TechCrunch
Events
Startup Battlefield
StrictlyVC
Podcasts
video
Partner Content
TechCrunch Brand Studio
Crunchboard
Contact Us
Amazon has confirmed that employee data point was compromised after a “ security effect ” at a third - party vendor .
In a statement given to TechCrunch on Monday , Amazon spokesperson Adam Montgomery confirmed that employee data had been involved in a data point breach .
“ Amazon and AWS systems rest secure , and we have not experienced a security event . We were notified about a certificate consequence at one of our property direction vendors that bear upon several of its customers include Amazon . The only Amazon entropy involved was employee work contact info , for illustration piece of work email addresses , desk earphone number , and edifice locations , ” Montgomery said .
Amazon decline to say how many employees were affect by the breach . It noted that the unknown third - party marketer does n’t have access to sensible data point such as Social Security figure or fiscal information and tell the seller had desexualise the security measure vulnerability responsible for the data point breach .
The verification comes after a threat player arrogate to have published data steal from Amazon on notorious hack site BreachForums . The individual claim to have more than 2.8 million course of data , which they say was stolen during last year’smass - development of MOVEit Transfer .
The threat actor , operating under the alias “ Nam3L3ss ” title to have put out data allegedly stolen from 25 major organization , cybersecurity firm Hudson Rockreports .
“ What you have see so far is less than .001 % of the data I have , ” the threat actor call . “ I have 1,000 releases coming never seen before . ”
Join us at TechCrunch Sessions: AI
Exhibit at TechCrunch Sessions: AI
TechCrunch has connect with the other arrangement list by the threat actor but has not yet receive any further response .
The MOVEit breach , which find out attackers exploit a zero - day exposure in Progress Software ’s file - transference software , was the biggest nag of 2023 .
These hack , which were exact by the notorious Clop ransomware and extortion gang , impacted more than 1,000 organisations , includingthe Oregon Department of Transportation(3.5 million records stolen),the Colorado Department of Health Care Policy and Financing(four million ) andU.S. government overhaul contracting elephantine Maximus(11 million ) .
