A serious security incident recently affected Amazon, as a hacker gained access to sensitive employee information through a third-party provider. This attack exposed employment data, though Amazon assures that critical information like Social Security numbers remains secure.
The breach was revealed when a hacker known as “Nam3L3ss” posted on BreachForums, a well-known hacking site, claiming to have obtained over 2.8 million records during a large-scale attack on the MOVEit transfer system. The cybercriminal threatened to release data not only from Amazon but also from 25 other major organizations. The hacker warned, “What you’ve seen is nothing. Barely 0.001% of what I have,” promising “1,000 more releases” of previously unseen information.
Adam Montgomery, an Amazon spokesperson, sought to reassure the public by emphasizing that Amazon and AWS systems remain secure. He clarified, “Only basic work contact information was accessed, like company emails, office phones, and building locations.”
Hudson Rock, a cybersecurity firm, highlighted the severity of the attack, warning that it could escalate in the coming weeks according to the hacker’s threats. This incident reignites concerns about corporate data security and the risks of outsourcing critical services without sufficient safeguards.
