Threat Post

Sensitive Enterprise Data Exposed in Amazon S3 Public Buckets

UPDATE – With companies flocking to cloud services such as Amazon Simple Storage Service (S3) to store and serve static content on the cheap, naturally they’re making simple mistakes in doing so—and ...
Infosecurity-magazine.com

Improving Security for Amazon S3 Buckets

In March of this year, Hobby Lobby, a national arts and crafts retailer, had 138GB of data, including payment card info and physical addresses, plucked out of an open Amazon S3 bucket. Events like ...
Threat Post

Leaky Amazon S3 Buckets Expose Data of Netflix, TD Bank

Netflix, TD Bank, and Ford were only a few of the companies whose data was exposed by three leaky Amazon S3 buckets owned by Attunity. Three publicly-accessible cloud storage buckets from data ...
Dark Reading

AWS Employee Flub Exposes S3 Bucket Containing GoDaddy Server Configuration and Pricing Models

Editors' note: This article and its headline was updated to correct details about ownership of the S3 bucket and contents therein. Another week, another publicly accessible AWS storage cloud found to ...
ZDNet

AWS rolls out new security feature to prevent accidental S3 data leaks

Amazon's Web Services division has rolled out new security features to AWS account owners today that are meant to prevent accidental data exposures caused by the misconfiguration of S3 data storage ...
GIGAZINE

Vulnerabilities discovered in six AWS services that allow accounts to be hijacked through the automatic creation of S3 buckets

At the world's largest security event, Black Hat USA 2024, a research team from Aqua Security announced that six AWS services had critical vulnerabilities that could lead to account hijacking, remote ...