It has been reported that Amazon has confirmed a data breach involving employee information after data allegedly stolen during the May 2023 MOVEit attacks was leaked on a hacking forum. In response to the news, Kevin Robertson, COO of Acumen Cyber gives his view.

According to reports, the threat actor behind the leak, known as Nam3L3ss, published over 2.8 million lines of Amazon employee data, as well as data belonging to twenty-five other companies.

Acumen Cyber‘s Robertson says: “This leak shows how data makes its way across the dark web, often reappearing in the news long after breaches took place and often in the hands of other attackers.

“The MOVEit breach dominated the media headlines last year after it impacted thousands of organisations and billions of peoples’ data. It was one of the first examples of a global supply chain attack that got so large even its perpetrators, Cl0p, struggled to ingest the volume of data compromised.

“The attack hasn’t had anywhere near the media coverage this year as it received last year, but this latest update shows that attackers are continuing to monetise from the data. Nam3L3ss is not thought to be a part of the initial MOVEit attack, but some of its data has landed in their hands, which provides evidence of how stolen data markets across the dark web.

“This latest update also serves as a timely reminder for organisations to prioritise their supply chain resilience, because once data is stolen and ends up on the dark web, it rarely goes away.

“Always vet the security of suppliers and segregate the network to prevent attacks on suppliers compromising internal data. Furthermore, its also important to build out contingency plans to ensure services can remain robust and available even when critical partners are compromised.

“If this isn’t possible due to a shortage of skills or internal cyber security personnel, it’s time to look at outsourcing to organisations who are experts in this field.”

For more Acumen Cyber news, click here