A large cable television provider left an unsecured AWS server containing millions of app users’ data exposed without a password.A worldwide publishing and financial firm exposed 2-4 million customer records on some semi-public S3 buckets.An entertainment company left three million users’ personal information on an unsecured server, in plain text.
A major mobile carrier exposed 6 million customer service call records found on a publicly accessible S3 repository, administered by a third-party vendor.military veterans, as well as Iraquis and Afghanis working alongside the military A private military contractor and third-party recruiting vendor leaked job applicant information of thousands of U.S.Twenty-five terabytes of data stored in a data analytic provider’s AWS cloud account were found unprotected, exposing information on nearly 200 million potential voters.Just in the past few months alone, there have been at least half a dozen significant incidents involving the exposure of millions of personal records: There have been countless examples of misconfigured access to these buckets containing massive amounts of sensitive data, which is significant since S3 buckets are, by default, configured for private access.
More specifically, S3 buckets refer to the logical unit of storage used in AWS - buckets are used to store objects, consisting of data. It can be used for backup and recovery, data archiving, big data analytics, cloud storage, disaster recovery and many other use cases. It can be used to collect, analyze, visualize and otherwise process very large amounts of data (i.e., exabytes - one quintillion bytes). What is Amazon S3?Īmazon Simple Storage Service (S3) is a virtual web storage service offered through Amazon Web Services (AWS) that allows for storing and retrieving of data from any source, including websites, mobile apps, data from interconnected devices and sensors, etc. While ransomware appears to remain the topic du jour in the media, there’s another problem that isn’t quite as flashy but still irrevocably damaging - misconfigured access to Amazon S3 buckets.īasically, that refers to massive amounts of customer/and or personal data, often sensitive, left unprotected in virtual cloud storage.
0 kommentar(er)
