1 min read

LexisNexis Confirms Data Breach via React2Shell AWS Vulnerability, Leaked Government Employee Data

Canopy Security

LexisNexis Legal & Professional confirmed a data breach in which hackers accessed its AWS infrastructure by exploiting a vulnerability called React2Shell, resulting in the exposure of legacy data that includes information related to US government employees. The breach was confirmed after hackers leaked the stolen files publicly, drawing significant attention given LexisNexis's role as a major legal and compliance data provider. The attack underscores the risk of legacy application vulnerabilities in cloud-hosted environments where older codebases share infrastructure with sensitive data.

Key Takeaways

  • LexisNexis breach: attackers used the React2Shell vulnerability to gain access to AWS infrastructure; stolen data included US government employee records
  • Hackers publicly leaked the stolen files before the breach was confirmed — reported by BleepingComputer on March 4, 2026
  • LexisNexis serves law firms, financial institutions, and government agencies with legal research and compliance data; breach affects legacy data stores specifically

Original source: BleepingComputer