Editor’s Note: This story has been updated to include a comment from an Amazon spokesperson.
Amazon.com, Inc. AMZN confirmed a vendor data breach exposing employee contact information, linking the company to the widening MOVEit hack.
What Happened: Amazon confirmed a data breach at one of its property management vendors that exposed the email addresses, phone numbers, and building locations of company employees, reported The Verge.
The exact number of affected employees is unclear, but a screenshot from the hacking forum shows over 2.8 million lines in the alleged Amazon dataset.
Amazon spokesperson Adam Montgomery confirmed the company was notified of a security event impacting multiple customers, including Amazon.
See Also: New Head Strap For Apple Vision Pro, Election Tracking, AI Magic, And More: This Week In Appleverse
Cybercrime firm Hudson Rock first reported the breach, revealing that data from Amazon and 25 other entities—such as MetLife, HP, HSBC, and Canada Post—was exposed.
The leaked data, dating back to May 2023, stems from a vulnerability in the MOVEit file transfer system, affecting Amazon and other organizations like the BBC, British Airways, Sony, and the U.S. Department of Energy.
In an emailed statement to Benzinga, Amazon said that the vendor has fixed the “security vulnerability responsible for the event.”
The company also underscored that only employee contact information was impacted since the impacted vendor does not receive sensitive information like Social Security numbers.
“Amazon and AWS systems remain secure, and we have not experienced a security event,” the spokesperson said.
Subscribe to the Benzinga Tech Trends newsletter to get all the latest tech developments delivered to your inbox.
Why It Matters: This breach exposes Amazon employees to phishing and social engineering risks.
While Amazon’s core systems remain secure, the incident highlights the vulnerabilities of third-party vendors, which can lead to data exposure.
It also raises regulatory concerns, as Amazon joins other major organizations affected by the MOVEit file transfer flaw.
Last month, Amazon reported third-quarter net sales of $158.9 billion, up 11% year-over-year. The total beat a Street consensus estimate of $157.2 billion.
Price Action: Amazon’s stock closed Monday with a 0.64% drop, finishing at $206.84. The decline continued in after-hours trading, with the stock dipping to $206.26 as of this writing, according to data from Benzinga Pro.
Check out more of Benzinga's Consumer Tech coverage by following this link.
Read Next:
Disclaimer: This content was partially produced with the help of Benzinga Neuro and was reviewed and published by Benzinga editors.
© 2024 Benzinga.com. Benzinga does not provide investment advice. All rights reserved.
Comments
Trade confidently with insights and alerts from analyst ratings, free reports and breaking news that affects the stocks you care about.