Security News

Leaky Amazon S3 Bucket Exposes Personal Data of 12,000 Social Media Influencers
2018-02-06 21:15

Octoly's incident response was sorely lacking, says the Upguard researcher who found the exposed repository.

Amazon Adds New Encryption, Security Features to S3
2017-11-08 14:07

Amazon announced this week that it has added five new security and encryption features to its Simple Storage Service (S3), including one that alerts users of publicly accessible buckets. read more

New Amazon S3 encryption and security features introduced
2017-11-07 17:32

Amazon Web Services has announced the availability of five new encryption and security features for the Amazon S3 cloud storage service. These include: Default object encryption; Permission...

AWS S3 Buckets at Risk of "GhostWriter" MiTM Attack
2017-11-06 13:25

GhostWriter: Writable AWS S3 Buckets Could Be Exploited to Overwrite Existing Data and Files, or Upload Malware read more

Internal Accenture Data, Customer Information Exposed in Public Amazon S3 Bucket
2017-10-10 19:32

Global consulting firm Accenture is the latest giant organization leaving sensitive internal and customer data exposed in a publicly available Amazon Web Services S3 storage bucket.

Chris Vickery on Amazon S3 Data Leaks
2017-09-25 15:15

Mike Mimoso talks to Chris Vickery of Upguard of the recent rash of Amazon S3 data leaks.

Verizon Wireless Internal Credentials, Infrastructure Details Exposed in Amazon S3 Bucket
2017-09-22 19:56

Verizon is the latest company to leak confidential data through an exposed Amazon S3 bucket.

Four Million Time Warner Cable Records Left on Misconfigured AWS S3 (Threatpost)
2017-09-05 18:06

600 gigabytes of information, including SQL database dumps, code, access logs, and customer information, belonging to BroadSoft and its client, TWC, was left online, accessible to anyone.

Military Contractor’s Vendor Leaks Resumes in Misconfigured AWS S3 (Threatpost)
2017-09-05 16:16

Thousands of resumes and job applications from U.S. military veterans, law enforcement, and others were leaked by a recruiting vendor in an unsecured AWS S3 bucket.

Cryptocurrency Mining Malware Hosted in Amazon S3 Bucket (Threatpost)
2017-08-25 14:00

Attackers are using an exploit kit to spread the Zminer executable that downloads a cryptocurrency miner hosted in an Amazon S3 bucket.