Forgot your password?
typodupeerror
Cloud

+ - One in six Amazon S3 storage buckets are ripe for data-plundering->

Submitted by
tsamsoniw
tsamsoniw writes "Using a combination of relatively low-tech techniques and tools, security researchers have discovered that they can access the contents of one in six Amazon Simple Storage Service (S3) buckets whose owners had them set to Public instead of Private. All told, researchers discovered and explored nearly 2,000 public buckets, according to Rapid 7 Senior Security Consultant Will Vandevanter, from which they gathered a list of more than 126 billion files, many of which contained sensitive information such as source code and personal employee information. Researchers noted that S3 URLs are all predictable and public facing, which make it that much easier to find the buckets in the first place with a scripting tool."
Link to Original Source
This discussion was created for logged-in users only, but now has been archived. No new comments can be posted.

One in six Amazon S3 storage buckets are ripe for data-plundering

Comments Filter:

No amount of careful planning will ever replace dumb luck.

Working...