Security News

New Supply Chain Attack Exploits Abandoned S3 Buckets to Distribute Malicious Binaries
2023-06-15 11:56

In what's a new kind of software supply chain attack aimed at open source projects, it has emerged that threat actors could seize control of expired Amazon S3 buckets to serve rogue binaries without altering the modules themselves. "Malicious binaries steal the user IDs, passwords, local machine environment variables, and local host name, and then exfiltrates the stolen data to the hijacked bucket," Checkmarx researcher Guy Nachshon said.

Amazon S3 to apply security best practices for all new buckets
2023-02-07 09:45

Starting in April 2023, Amazon S3 will change the default security configuration for all new S3 buckets.For new buckets created after this date, S3 Block Public Access will be enabled, and S3 access control lists will be disabled.

McGraw Hill's S3 buckets exposed 100,000 students' grades and personal info
2022-12-20 03:30

Misconfigured Amazon Web Services S3 buckets belonging to McGraw Hill exposed more than 100,000 students' information as well as the education publishing giant's own source code and digital keys, according to security researchers. The research team at vpnMentor said they discovered the open S3 buckets on June 12, and contacted McGraw Hill a day later.

New open-source tool scans public AWS S3 buckets for secrets
2022-10-29 15:12

A new open-source 'S3crets Scanner' scanner allows researchers and red-teamers to search for 'secrets' mistakenly stored in publicly exposed or company's Amazon AWS S3 storage buckets. In addition to application data, source code or configuration files in the S3 buckets can also contain 'secrets,' which are authentication keys, access tokens, and API keys.

Capital One: Convicted techie got in via 'misconfigured' AWS buckets
2022-06-20 13:32

The conviction follows the infamous 2019 hack of Capital One in which personal information of more than 100 million US and Canadian credit card applicants were swiped from the financial giant's misconfigured cloud-based storage. The data was submitted by credit card hopefuls between 2005 and early 2019, and Thompson was able to get into Capital One's AWS storage thanks to a "Misconfigured web application firewall."

Votiro introduces an AWS S3 bucket connector to reduce risk of weaponized files in storage buckets
2021-07-21 01:45

Votiro announced the addition of an AWS S3 bucket connector to its Secure File Gateway solution suite. With this new capability, all files hosted within AWS storage will be delivered to the Votiro Secure File Gateway, powered by Positive Selection technology.

Perception Point releases Advanced Threat Protection for Amazon S3 buckets
2021-07-15 02:05

Perception Point announced its Advanced Threat Protection service for Amazon Web Services environments to protect joint customers' data and stop malicious content - files and URLs - from infiltrating their Amazon Simple Storage Service buckets. Enterprises and innovative SaaS vendors are increasingly storing their internal data as well files received from external sources in Amazon S3 buckets.

ClearDATA expands SaaS platform to automatically detect PHI in multi-cloud storage buckets
2021-05-16 00:00

ClearDATA announced an expanded capability of their ClearDATA Healthcare Security and Compliance Platform, enabling healthcare organizations and their business associates to automatically detect protected health information in multi-cloud storage buckets. "In today's climate, cybersecurity breaches are at an all-time high, partially due to the industry's accelerating cloud adoption to tackle the unique challenges healthcare has encountered during the pandemic," said Suhas Kelkar, Chief Product Officer at ClearDATA. "This new technology offering enhances healthcare organizations' ability to create secure environments for data that facilitate innovation, collaboration and scalability."

Google Cloud Buckets Exposed in Rampant Misconfiguration
2020-09-22 14:12

Six percent of all Google Cloud buckets are misconfigured and left open to the public internet, for anyone to access their contents. In a survey of 2,064 Google Cloud buckets by Comparitech, 131 of them were found to be vulnerable to unauthorized access by users who could list, download and/or upload files.

Leaky AWS S3 buckets are so common, they're being found by the thousands now – with lots of buried secrets
2020-08-03 23:47

Misconfigured AWS S3 storage buckets exposing massive amounts of data to the internet are like an unexploded bomb just waiting to go off, say experts. The team at Truffle Security said its automated search tools were able to stumble across some 4,000 open Amazon-hosted S3 buckets that included data companies would not want public - things like login credentials, security keys, and API keys.