UrsaClimb Logo

LexisNexis confirms data breach as hackers leak stolen files

Bleeping Computer
by Bill Toulas
March 3, 2026
AI-Generated Deep Dive Summary
American data analytics giant LexisNexis Legal & Professional has confirmed a cybersecurity breach following reports of stolen files being leaked online. Hackers exploited an unpatched React app vulnerability in the company’s AWS infrastructure, gaining access to sensitive information. The attackers, identified as FulcrumSec, claimed to have exfiltrated over 2GB of data, including customer details and records related to U.S. government employees and federal judges. LexisNexis acknowledged that while the breach occurred, the impacted data was mostly outdated and non-critical, such as customer names, user IDs, and business contact information from prior to 2020. The company emphasized that no sensitive personally identifiable information (PII) like Social Security numbers or financial details were exposed. However, FulcrumSec detailed accessing over 3.9 million database records, 21,042 customer accounts, and 5,582 attorney survey respondents. The hackers also claimed to have obtained real-time access to AWS Secrets Manager secrets and complete VPC infrastructure mapping. The breach highlights a concerning security oversight: LexisNexis allowed a single ECS task role read access to every secret in its account, including production credentials. FulcrumSec criticized the company’s security practices and accused it of ignoring their efforts to collaborate on the issue. The incident underscores the risks of unpatched vulnerabilities in cloud environments and the potential for significant data exposure when attackers exploit such weaknesses. For LexisNexis, this breach adds to its growing cybersecurity challenges. The company previously disclosed another major breach in 2023, affecting over 364,000 customers. While no evidence of product or service disruption was found, the incident has prompted the firm to notify law enforcement and engage an external cybersecurity expert. Despite the limited impact on sensitive data, the breach raises concerns about the security practices of major institutions that handle vast amounts of critical information. This attack matters because LexisNexis serves over 150 countries with legal, regulatory, and business tools used by governments, corporations,
Verticals
securitytech
Originally published on Bleeping Computer on 3/3/2026