It appears you have not yet registered with our community. To register please click here...

Go Back [M] > Madshrimps > WebNews
Thousands of Amazon S3 data stores left unsecured due to misconfiguration Thousands of Amazon S3 data stores left unsecured due to misconfiguration
FAQ Members List Calendar Search Today's Posts Mark Forums Read

Thousands of Amazon S3 data stores left unsecured due to misconfiguration
Thread Tools
Old 28th March 2013, 09:59   #1
[M] Reviewer
Stefan Mileschin's Avatar
Join Date: May 2010
Location: Romania
Posts: 138,431
Stefan Mileschin Freshly Registered
Default Thousands of Amazon S3 data stores left unsecured due to misconfiguration

Will Vandevanter, of Help Net Security, made a rather disturbing discovery: thousands of Amazon S3 data "buckets" were improperly configured and left exposed to prying eyes. Vandevanter started his probe by generating URLs using the names of major companies and sites that use Amazon's cloud storage service. In the end he uncovered 12,328 of the so-called buckets -- 1,951 of which were visible to the public. Those folders were home to some 126 billion files that contain everything from personal data hosted by a social networking service, sales records, video game source code and even unencrypted backups of databases. By default, S3 accounts are set to private, which means these stores of potentially sensitive data had to be flipped to public manually -- most likely by accident. Amazon has responded to the discovery by alerting users who might have inadvertently made their files publicly accessible. If you've got an S3 account of your own, now would be an excellent time to double check your own settings. And if you're looking for more details of Vandevanter's research, hit up the source link.
Stefan Mileschin is offline   Reply With Quote

Similar Threads
Thread Thread Starter Forum Replies Last Post
CRB errors mean thousands wrongly branded as criminals Stefan Mileschin WebNews 0 6th January 2013 15:45
New USB key safely stores a person's medical data Stefan Mileschin WebNews 0 19th November 2012 08:14
New Yahoo CEO Set To Layoff Thousands Stefan Mileschin WebNews 0 7th March 2012 07:24
WD Adds Thousands of New HD Movies for WD TV Customers Stefan Mileschin WebNews 0 23rd December 2011 07:37
Firesheep captures unsecured cookies, abuses login rights jmke WebNews 0 25th October 2010 19:36
ISP Emails Customer Database To Thousands jmke WebNews 0 24th September 2009 14:18
Intel expected to cut thousands of jobs Sidney WebNews 1 1st September 2006 10:24
Thousands of overheating HP notebook batteries recalled Sidney WebNews 0 21st April 2006 04:57
Unsecured Wi-Fi to Become Illegal? jmke WebNews 2 7th November 2005 23:07
IBM to cut thousands of jobs after mainframe slump Sidney WebNews 0 17th April 2005 05:33

Thread Tools

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

vB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are Off

All times are GMT +1. The time now is 01:15.

Powered by vBulletin® - Copyright ©2000 - 2022, Jelsoft Enterprises Ltd.
Content Relevant URLs by vBSEO