Amazon Employee Data Exposed in Third-Party MOVEit Breach

November 12, 2024

Amazon has affirmed that its employees' data was leaked on a cybercrime forum. This incident is linked to the notorious vulnerability in MOVEit software, identified as CVE-2023-34362. Despite the leak, Amazon maintains that its own and AWS systems are secure, and no breach has occurred on their part. The data leak originated from a third-party property-management vendor that also works with several other clients apart from Amazon. The compromised data includes work email addresses, desk phone numbers, and building locations.

The MOVEit vulnerability was discovered last year in the file transfer software. This flaw allows cybercriminals to bypass authentication on systems that have not been patched, thereby accessing files. It has affected a multitude of organizations so far. According to Ferhat Dikbiyik, chief research and intelligence officer at Black Kite, 'Amazon's recent data breach, traced back to a third-party vendor's use of the MOVEit tool, is another wake-up call for the supply chain's hidden vulnerabilities.'

The impact of the MOVEit flaw has been significant. Initially, hundreds of organizations were hit, but the effects rippled out to more than 2,700 organizations as it reached third- and even fourth-party vendors. Over 600 MOVEit servers were likely caught in this widespread attack, leaving a vast field of potential targets. Cybercrime intelligence company Hudson Rock referred to the fallout from this bug as one of the most significant leaks of corporate information last year.

The 'Verizon Data Breach Investigation Report (DBIR)' published in February also highlighted the numerous breaches attributed to MOVEit, so much so that it skewed its statistics for the year. The upcoming free virtual event, 'Know Your Enemy: Understanding Cybercriminals and Nation-State Threat Actors,' scheduled for Nov. 14 at 11 a.m. ET, will delve into understanding MITRE ATT&CK, using proactive security as a weapon, and a masterclass in incident response. The event will feature top speakers like Larry Larsen from the Navy Credit Federal Union, former Kaspersky Lab analyst Costin Raiu, Ben Read of Mandiant Intelligence, Rob Lee from SANS, and Elvia Finalle from Omdia.

Related News

Latest News

Like what you see?

Get a digest of headlines, vulnerabilities, risk context, and more delivered to your inbox.

Subscribe Below

By submitting this form, you’re giving us permission to email you. You may unsubscribe at any time.

Accelerate Security Teams

Continuously identify and prioritize the risks that are most critical in your environment, and validate that your remediation efforts are reducing risk. An always-on single source-of-truth of your assets, services, and vulnerabilities.