Amazon Faces Data Breach After Vendor Security Flaw
- A security event at a third-party vendor led to the compromise of Amazon employee data.
- The leaked information primarily included work contact details, with no access to sensitive personal data.
- This incident emphasizes the significant risks posed by third-party vendors in maintaining data security.
Amazon confirmed a data breach involving employee information that occurred due to a security event at one of its third-party vendors. In a statement made to TechCrunch, an Amazon spokesperson clarified that the data compromised included work contact details, such as email addresses and phone numbers. Highly sensitive information like Social Security numbers and financial data remained secure, as the third-party vendor lacked access to such data. The breach was linked to a larger incident involving the MOVEit Transfer software, where attackers exploited a known vulnerability to access data from multiple organizations. This event underscores the risks associated with third-party vendors and highlights the importance of stringent security measures.