More MOVEit data leaked - Xerox, Nokia, BofA, Morgan Stanley's impacted
Learn More
On Monday, 2nd of December morning, new data dumps of data stolen in the 2023 MOVEit vulnerability exploit were published, affecting employees from several major corporations.
The dump, published by an entity known as "Nam3L3ss," has exposed sensitive information of more than 760,000 employees from prominent companies including Xerox, Nokia, Koch, Bank of America, Morgan Stanley, and others.
Exposed Data:
- Names
- Phone numbers
- Email addresses
- Job addresses
- Employee badges
- Job titles
- Usernames
- Organizational structure information
Breakdown of Affected Employees by Company:
- Bank of America: 288,297 employees
- Koch: 237,487 employees
- Nokia: 94,253 employees
- JLL: 62,349 employees
- Xerox: 42,735 employees
- Morgan Stanley: 32,861 employees
- Bridgewater: 2,141 employees
The leak appears to be a continuation of the widespread attacks that began in May 2023, when the Cl0p ransomware group exploited a critical security vulnerability in Progress Software's MOVEit file transfer tool. This latest data dump follows a similar leak last month that exposed Amazon employee data on the same cyber crime forum.
The authenticity of the leaked data has been verified by Atlas Privacy, a personal-data-removal company.
