{"id":219509,"date":"2026-03-03T10:40:00","date_gmt":"2026-03-03T15:40:00","guid":{"rendered":"https:\/\/news-you-need.com\/index.php\/2026\/03\/03\/lexisnexis-confirms-data-breach-as-hackers-leak-stolen-files\/"},"modified":"2026-03-03T15:00:27","modified_gmt":"2026-03-03T20:00:27","slug":"lexisnexis-confirms-data-breach-as-hackers-leak-stolen-files","status":"publish","type":"post","link":"https:\/\/news-you-need.com\/index.php\/2026\/03\/03\/lexisnexis-confirms-data-breach-as-hackers-leak-stolen-files\/","title":{"rendered":"LexisNexis confirms data breach as hackers leak stolen files"},"content":{"rendered":"<p><a href=\"https:\/\/www.bleepingcomputer.com\/news\/security\/lexisnexis-confirms-data-breach-as-hackers-leak-stolen-files\/\">LexisNexis confirms data breach as hackers leak stolen files<\/a><\/p>\n<p><a href=\"https:\/\/www.bleepingcomputer.com\/news\/security\/lexisnexis-confirms-data-breach-as-hackers-leak-stolen-files\/\">https:\/\/www.bleepingcomputer.com\/news\/security\/lexisnexis-confirms-data-breach-as-hackers-leak-stolen-files\/<\/a><\/p>\n<p>Publish Date: <a href=\"publish_date]\">2026-03-03 10:40:00<\/a><\/p>\n<p>Source Domain: <a href=\"www.bleepingcomputer.com\">www.bleepingcomputer.com<\/a><\/p>\n<p style=\"text-align:center\">\n<p>American data analytics company LexisNexis Legal &#038; Professional has confirmed to BleepingComputer that hackers breached its servers and accessed some customer and business information.<\/p>\n<p>The company&#8217;s data breach confirmation comes as a threat actor named FulcrumSec leaked 2GB of files on various underground forums and sites.<\/p>\n<p>LexisNexis L&#038;P is a global provider of legal, regulatory, and business information, research tools, and analytics used by lawyers, corporations, governments, and academic institutions in more than 150 countries worldwide.<\/p>\n<h3>Cloud breach via unpatched React app<\/h3>\n<p>The threat actor says that on February 24 they gained access to the company&#8217;s AWS infrastructure by exploiting the React2Shell\u00a0vulnerability in an unpatched React frontend app.<\/p>\n<p>LexisNexis L&#038;P admitted that hackers breached its network, noting that the stolen information was old and consisted mostly of non-critical details.<\/p>\n<p>\u201cOur investigation has confirmed that an unauthorized party accessed a limited number of servers,\u201d the company told BleepingComputer.<\/p>\n<p>\u201cThese servers contained mostly legacy, deprecated data from prior to 2020, including information such as customer names, user IDs, business contact information, products used, customer surveys with respondent IP addresses, and support tickets,\u201d a spokesperson said.<\/p>\n<p>\u201cThe impacted information did not contain Social Security numbers, driver\u2019s license numbers, or any other sensitive personally identifiable information; credit card, bank accounts, or any other financial information; active passwords; or customer search queries, customer client or matter information, or customer contracts.\u201d<\/p>\n<p>Based on its investigation, LexisNexis believes that the intrusion has been contained and found no evidence that products or services were impacted by the intrusion.<\/p>\n<p>In a public post detailing the hack, FulcrumSec claims that they stole information related to more than 100 users with .gov email addresses, which included U.S&#8230;.<\/p>\n<p><a href=\"https:\/\/www.bleepingcomputer.com\/news\/security\/lexisnexis-confirms-data-breach-as-hackers-leak-stolen-files\/\">Source<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>LexisNexis confirms data breach as hackers leak stolen files https:\/\/www.bleepingcomputer.com\/news\/security\/lexisnexis-confirms-data-breach-as-hackers-leak-stolen-files\/ Publish Date: 2026-03-03 10:40:00 Source&#8230;<\/p>\n","protected":false},"author":1,"featured_media":219510,"comment_status":"closed","ping_status":"","sticky":false,"template":"","format":"standard","meta":{"fifu_image_url":"https:\/\/www.bleepstatic.com\/content\/hl-images\/2026\/03\/03\/lexisnexis.jpg","fifu_image_alt":"","footnotes":""},"categories":[15],"tags":[30,34,27],"class_list":["post-219509","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-cybersecurity","tag-breach","tag-threat-actor","tag-vulnerability"],"_links":{"self":[{"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/219509"}],"collection":[{"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/comments?post=219509"}],"version-history":[{"count":1,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/219509\/revisions"}],"predecessor-version":[{"id":219511,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/219509\/revisions\/219511"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/media\/219510"}],"wp:attachment":[{"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/media?parent=219509"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/categories?post=219509"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/tags?post=219509"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}