A threat actor claims to have stolen and is selling a portion of Avalara, Inc.’s database, affecting major clients like Amazon and Microsoft. The breach involves sensitive data such as API tokens, personal details, and shipping info. #Avalara #DataBreach #Amazon #Microsoft #MorganStanley
Keypoints
- A threat actor has allegedly breached Avalara, Inc., a tax compliance software provider.
- The stolen database contains over 8 million rows of sensitive information.
- The compromised data includes API tokens, personal details, and order metadata.
- Major companies like Amazon, Microsoft, and Morgan Stanley are affected by this breach.
- The attacker is now selling partial access to the stolen database on the dark web.
Read More: https://dailydarkweb.net/avalara-inc-data-breach-exposes-customer-and-api-data/