Data on 760K workers from Xerox, Nokia, BofA, Morgan Stanley and more dumped online
Hundreds of thousands of employees from major corporations including Xerox, Nokia, Koch, Bank of America, Morgan Stanley and others appear to be the latest victims in a massive data breach linked to last year's attacks on file transfer tool MOVEit.
On Monday morning, an entity that uses the handle "Nam3L3ss" began leaking what they claimed to be personal data belonging to from the abovementioned corporations, plus workers at other firms affected by the MOVEit vulnerability.
The Russia-linked Cl0p ransomware crew began abusing this critical security hole in Progress Software's MOVEit product suite in May 2023. Thousands of organizations' and millions of individuals' data was accessed.
MOVEit appears to be the gift that keeps giving, as last month Nam3L3ss began dumping files – including those belonging to Amazon employees – on the cyber crime forum.
This week, the miscreant(s) added several other big names to the MOVEit victims list. The newly leaked data appears to be authentic, according to Zack Ganot, chief strategy officer at personal-data-removal deletion outfit Atlas Privacy.
