IT Pro is supported by its audience. When you purchase through links on our site, we may earn an affiliate commission. Learn more

Amazon sacks employee over data breach

The worker leaked customer email addresses to an unidentified third-party

Amazon has contacted a portion of its customers to inform them an employee has been discharged from their role after leaking their personal information to an unidentified third-party.

The individual who lost their job for leaking customer email addresses has been referred to the police, according to Motherboard, with criminal investigations now ongoing. The incident highlights the continued threat of insider security risks. 

No matter how many cyber security precautions an organisation takes, it’s difficult to guard against either human error or malicious intent, as has been the case with the leakage of Amazon customers’ email addresses.

"We are writing to let you know that your e-mail address was disclosed by an Amazon employee to a third-party in violation of our policies,” the company wrote in a message to customers affected. 

“As a result, we have fired the employee, referred them to law enforcement, and are supporting law enforcement criminal prosecution.”

There are few details as to how many customers were affected, or the identity of the third-party to which the customer email addresses were leaked. The news circulated online over the weekend after a number of Twitter users posted copies of the message they received from Amazon.

“The fact that a number of Tweets that have appeared over the last few days from Amazon customers stating that they have been the victim of a data breach will rightfully be a worry to consumers," said Jo O’Reilly, digital privacy expert at ProPrivacy.

“Finding out that an Amazon employee has been passing customer emails to a third party is particularly concerning, especially as Amazon appears to have been very vague about the details.

Related Resource

The State of Email Security 2020

Email security insights at your email perimeter, inside your organisation, and beyond

Email security insights at your email perimeter, inside your organisation, and beyondDownload now

“The online retail giant has confirmed that they are working directly with the authorities and that the employee in question has been fired however more transparency with the consumer impacted and what this means for their online privacy is now needed. It's entirely possible that they will now find themselves falling victim to phishing attacks, to prevent this Amazon need to be upfront about exactly who these emails have been shared with.”

This incident bears striking similarity to one in January 2020, in which several Amazon employees were fired after sharing customer email addresses and phone numbers with a third-party.

Featured Resources

Join the 90% of enterprises accelerating to the cloud

Business transformation through digital modernisation

Free Download

Delivering on demand: Momentum builds toward flexible IT

A modern digital workplace strategy

Free download

Modernise the workforce experience

Actionable insights and an optimised experience for both IT and end users

Free Download

The digital workplace roadmap

A leader's guide to strategy and success

Free Download

Recommended

Ten ways to protect your company from the next big data breach
data breaches

Ten ways to protect your company from the next big data breach

18 Feb 2022
Gumtree site code made personal data of users and sellers publicly accessible
data protection

Gumtree site code made personal data of users and sellers publicly accessible

16 Dec 2021
Pizza chain exposed 100,000 employees' Social Security numbers
data breaches

Pizza chain exposed 100,000 employees' Social Security numbers

19 Nov 2021
83% of critical infrastructure companies have experienced breaches in the last three years
cyber security

83% of critical infrastructure companies have experienced breaches in the last three years

11 Nov 2021

Most Popular

Universities are fighting a cyber security war on multiple fronts
cyber security

Universities are fighting a cyber security war on multiple fronts

4 Jul 2022
Hackers claim to steal personal data of over a billion people in China
data breaches

Hackers claim to steal personal data of over a billion people in China

4 Jul 2022
Raspberry Pi launches next-gen Pico W microcontroller with networking support
Hardware

Raspberry Pi launches next-gen Pico W microcontroller with networking support

1 Jul 2022