Daily Dark Web
  • Home
  • Data Breaches
  • Inside the Adversary
    • Dark Web Informants
  • DDW Top Lists
  • Ransomware News
  • DarkWeb News
    • Vulnerability
    • Cyber Attacks
  • Unauthorized Accesses
  • About Us
No Result
View All Result
  • Home
  • Data Breaches
  • Inside the Adversary
    • Dark Web Informants
  • DDW Top Lists
  • Ransomware News
  • DarkWeb News
    • Vulnerability
    • Cyber Attacks
  • Unauthorized Accesses
  • About Us
No Result
View All Result
Daily Dark Web
No Result
View All Result
Home Data Breaches

LexisNexis Investigates Massive Data Breach by FULCRUMSEC

🇺🇸 United States - LexisNexis

March 3, 2026
Reading Time: 1 min read
LexisNexis Investigates Massive Data Breach by FULCRUMSEC

The FULCRUMSEC extortion group claims to have breached LexisNexis, the global legal, regulatory, and business information analytics division of RELX Group. The threat actors allege they exploited a vulnerable container role to gain widespread access to the company’s AWS infrastructure, successfully bypassing access controls to exfiltrate vast amounts of sensitive corporate, government, and customer intelligence.

According to the actor, the allegedly compromised data includes:

  • 2.04 GB of structured data encompassing 536 Redshift tables and over 430 VPC database tables

  • 53 AWS Secrets Manager secrets in plaintext, including production database master passwords, tokens, and API keys

  • 3.9 million Enterprise Data Warehouse records

  • Approximately 400,000 cloud user profiles containing full names, email addresses, phone numbers, and job functions

  • 118 government user accounts, including federal judges, DOJ attorneys, SEC staff, and law clerks

  • 21,042 customer account records detailing commercial relationships, active product subscriptions, and pricing tiers

  • 5,582 attorney survey respondents, including their substantive product feedback and IP addresses

  • 45 employee password hashes, alongside cleartext customer passwords improperly stored in IT support ticket subject lines

  • Complete VPC infrastructure mapping, 10,000 IT incident tickets, and 10,000 internal engineering defect records

Tags: Cloud securityCybersecurity Incidentdata exfiltrationdata-breachFulcrumSeclegal servicesLexisNexisUnited States
ShareTweet

Related Posts

Uganda Ministry of Agriculture MAAIF Suffers Data Breach
Data Breaches

Uganda Ministry of Agriculture MAAIF Suffers Data Breach

April 27, 2026
Ellipal Cryptocurrency Wallet Suffers Alleged Data Breach
Data Breaches

Ellipal Cryptocurrency Wallet Suffers Alleged Data Breach

April 27, 2026
BlackSexFinder Adult Platform Suffers Massive Data Breach
Data Breaches

BlackSexFinder Adult Platform Suffers Massive Data Breach

April 27, 2026
Jeff Honeycutt Insurance Agency Data Breach Exposes Client Info
Data Breaches

Jeff Honeycutt Insurance Agency Data Breach Exposes Client Info

April 27, 2026
FFWPU and Tongil Group Face Extensive Data Breach
Data Breaches

FFWPU and Tongil Group Face Extensive Data Breach

April 27, 2026
Terra West Management Services Suffers Major Data Breach
Data Breaches

Terra West Management Services Suffers Major Data Breach

April 24, 2026
Next Post
Sadenet ISP Data Breach Exposes 160K Customer Records

Sadenet ISP Data Breach Exposes 160K Customer Records

AiLock Ransomware Hits Aaronson Rappaport & Demanor

AiLock Ransomware Hits Aaronson Rappaport & Demanor

Recommended Stories

NNPC Health Maintenance Organisation Limited Data Breach

NNPC Health Maintenance Organisation Limited Data Breach

April 9, 2026
Cleveland County Sheriff’s Office Hit by Rhysida Ransomware

Cleveland County Sheriff’s Office Hit by Rhysida Ransomware

December 2, 2025
Ayuntamiento de Béjar Internal Documents Leaked Following Breach

Ayuntamiento de Béjar Internal Documents Leaked Following Breach

November 19, 2025

Popular Stories

  • SudamericaData Breach Exposes Over 1TB of Argentine Records

    SudamericaData Breach Exposes Over 1TB of Argentine Records

    0 shares
    Share 0 Tweet 0
  • Threat Actor Claims Sale of Dell Database Containing 49 Million Customer Records

    0 shares
    Share 0 Tweet 0
  • SUUMO, CHINTAI, At Home, HOME’S Suffer Data Breach

    0 shares
    Share 0 Tweet 0
  • Financial Tech Giant SilverLake Axis Allegedly Breached – 423GB of Data for Sale

    0 shares
    Share 0 Tweet 0
  • Telekom Serbia Investigates Leak of 160,000 Customer Records

    0 shares
    Share 0 Tweet 0
Daily Dark Web

Disclaimer: Daily Dark Web (DDW) is an independent media platform providing information, analysis, and reporting on cybersecurity, cyber incidents, and related digital developments. All content published on this website is for informational and journalistic purposes only. DDW does not support, endorse, or promote any illegal activities, threat actors, or organizations referenced in its content. Any statements, claims, or opinions expressed by third parties, including interview subjects, are their own and do not reflect the views of DDW. Such content may include unverified information and should be interpreted critically. DDW does not participate in, facilitate, or coordinate any activities discussed or referenced on this platform. Under no circumstances should any content be interpreted as encouragement, instruction, or endorsement of unlawful actions. All interactions and publications are conducted in the public interest to enhance awareness and understanding of the evolving cyber landscape.

No Result
View All Result
  • About Us
  • Home
  • Newsletter
  • Privacy Policy

Disclaimer: Daily Dark Web (DDW) is an independent media platform providing information, analysis, and reporting on cybersecurity, cyber incidents, and related digital developments. All content published on this website is for informational and journalistic purposes only. DDW does not support, endorse, or promote any illegal activities, threat actors, or organizations referenced in its content. Any statements, claims, or opinions expressed by third parties, including interview subjects, are their own and do not reflect the views of DDW. Such content may include unverified information and should be interpreted critically. DDW does not participate in, facilitate, or coordinate any activities discussed or referenced on this platform. Under no circumstances should any content be interpreted as encouragement, instruction, or endorsement of unlawful actions. All interactions and publications are conducted in the public interest to enhance awareness and understanding of the evolving cyber landscape.

Are you sure want to unlock this post?
Unlock left : 0
Are you sure want to cancel subscription?