Massive Data Leak Exposes 760,000 Employee Records from Major Companies
A massive trove of sensitive employee information has been leaked online, sending shockwaves across the corporate world. Over 760,000 employee records from high-profile companies, including Bank of America, Nokia, Morgan Stanley, and others, have been dumped on a notorious hacking forum.
Table of Contents
The Aftermath of the MOVEit Hack
The leaked data appears to stem from last year’s MOVEit cyberattack, a devastating incident that exploited a zero-day vulnerability in Progress Software’s file transfer tool. The breach, attributed to the Cl0p ransomware gang, compromised data from roughly 2,800 organizations and affected nearly 100 million individuals. The latest data dump, posted by a hacker known as “Nam3l3ss” on BreachForums, highlights the long tail of this catastrophic attack.
Companies Caught in the Crossfire
The affected organizations include:
- Bank of America: 288,297 employees impacted
- Koch Industries: 237,487 employees
- Nokia: 94,253 employees
- JLL: 62,349 employees
- Xerox: 42,735 employees
- Morgan Stanley: 32,861 employees
- Bridgewater: 2,141 employees
The leaked information primarily consists of names, email addresses, phone numbers, work IDs, job titles, and manager details. While it’s unclear if additional data was exposed, experts have warned that even these details are a goldmine for social engineering attacks.
Why This Leak Matters
According to Atlas Privacy, a data breach reporting service, the extracted data was likely sifted and repackaged by “Nam3l3ss” for broader distribution. “This type of data provides threat actors with a detailed organizational map, making it valuable for phishing and other social engineering campaigns,” explained Tsachi Ganot, Atlas Privacy’s co-founder.
The exposure poses a significant risk to affected employees, who may now face heightened phishing attacks, identity theft, and other scams. Hackers can use detailed organizational charts to impersonate managers or launch highly targeted attacks against businesses.
History of Breaches by Nam3l3ss
This isn’t the first time Nam3l3ss has been linked to major data dumps. Just weeks before this incident, the same hacker leaked personal and work-related information of Amazon employees. Their recurring presence on BreachForums raises questions about the ongoing threat posed by bad actors exploiting massive breaches like MOVEit.
Protecting Against Future Attacks
This incident serves as a grim reminder for companies to bolster their cybersecurity defenses and adopt proactive monitoring of leaked data. Employees should also remain vigilant, especially regarding unsolicited emails or phone calls.
The MOVEit hack and its aftermath underline the persistent dangers posed by ransomware gangs and the vulnerabilities in third-party software. Organizations must stay ahead of the curve to avoid becoming the next victim in the crosshairs of cybercriminals.