web analytics

Verizon Wireless Internal Credentials, Infrastructure Details Exposed in Amazon S3 Bucket

by Michael Mimoso

 

Organizations continue to leak data through publicly accessible Amazon S3 buckets, pointing a harsh finger at continued lax attitudes toward the custodianship of sensitive data.

Verizon is the latest business affected by this epidemic, leaking in this case files marked confidential from an internal middleware system called DVS.

Researchers at Kromtech Security privately reported the improperly secured S3 instance on Thursday, and shortly thereafter, the bucket was taken down.

“Upon analyzing the content of the repository, we identified the alleged owner of the bucket and sent responsible notification email on September 21st. Shortly after that, online archive has been [taken] down and it has been later confirmed that the bucket was self-owned by [a] Verizon Wireless engineer and it did not belong [to] or managed by Verizon,” Kromtech said in a blogpost published today.

 

full article here:

Take a look at the best antivirus, anti-malware, anti-spy, etc. software

Powered by WPeMatico