Security News > 2019 > July > Magecart compromised 17,000+ sites through unsecured Amazon S3 buckets

Magecart compromised 17,000+ sites through unsecured Amazon S3 buckets
2019-07-11 09:47

We often hear about misconfigured Amazon S3 buckets exposing sensitive business and customer data, but there’s another present danger: Magecart attackers have been exploiting them to inject payment card skimming scripts into websites. The problem with unsecured Amazon S3 buckets “Amazon Simple Storage Service (S3) provides the ability to store and serve static content from Amazon’s cloud. Businesses use S3 to store server backups, company documents, web logs, and publicly visible content such as web … More → The post Magecart compromised 17,000+ sites through unsecured Amazon S3 buckets appeared first on Help Net Security.


News URL

http://feedproxy.google.com/~r/HelpNetSecurity/~3/xKNxyj_d3rI/

Related vendor

VENDOR LAST 12M #/PRODUCTS LOW MEDIUM HIGH CRITICAL TOTAL VULNS
Amazon 60 4 39 62 15 120