Amazon S3

Prison inmates’ sensitive data left exposed on leaky cloud bucket

A completely-avoidable data leak has exposed prescription records, mugshots, and other sensitive information related to an unknown number of prison inmates.

PussyCash adult webcam data breach exposes highly sensitive data of models

You may have been expecting to reveal a lot by signing up as an adult webcam model, but I doubt this is quite what you had in mind.

bitdefender.com

Amazon battles leaky S3 buckets with a new security tool

A new AWS feature is supposed to help avoid accidental misconfigurations that could result in sensitive data being exposed, a company’s brand being damaged, and even – potentially – put its customers at risk.

Read more in my article on the Bitdefender Business Insights blog.

tripwire.com

Woman arrested after Capital One hack spills personal info on 106 million credit card applicants

The FBI has arrested a 33-year-old software engineer in Seattle as part of an investigation into a massive data breach at financial services company Capital One.

Read more in my article on the Tripwire State of Security blog.

bitdefender.com

Fortune 100 passwords, email archives, and corporate secrets left exposed on unsecured Amazon S3 servers

Some of the world’s biggest companies have had 750GB worth of their innermost secrets revealed on unsecured Amazon S3 buckets, available for anybody to download – no password required.

Read more in my article on the Hot for Security blog.

bitdefender.com

Drupe app removed from Google Play store after photos and messages leaked publicly

A popular Android app called Drupe, downloaded over 10 million times, has been leaving users’ selfie snapshots, audio messages, and other sensitive data exposed for anybody to see.

Read more in my article on the Hot for Security blog.

bitdefender.com

48 million people put at risk after firm that scraped social networks left data exposed for anyone to download

Chances are that you’ve never heard of Washington-based data firm LocalBlox. But that doesn’t mean that they haven’t heard of you. And it doesn’t mean that your personal information hasn’t been recklessly exposed through their sloppy disregard for the most basic security.

Read more in my article on the Hot for Security blog.

bitdefender.com

Security – it shouldn’t just be the jewel in your crown, but your partners and suppliers too

Before you entrust sensitive data to any third party, your company needs to be sure the partner can and will keep it safe from attack.

Read more in my article on the Bitdefender Business Insights blog.

bitdefender.com

1 in 50 publicly readable Amazon buckets are also writable – and that’s a data disaster waiting to happen

Don’t dilly-dally. If you haven’t already properly secured the Amazon Web Services S3 servers (known as “buckets”) storing your sensitive data in the cloud then your business has no time to lose.

Read more in my article on the Bitdefender Business Insights blog.

tripwire.com

LA Times homicide website throttles cryptojacking attack

Whoever hacked the LA Times’ interactive county murder map probably hoped to make a killing mining cryptocurrency – but swift action from a security researcher has put paid to their plans.

Read more in my article on the Tripwire State of Security blog.

welivesecurity.com

Friendly warnings left in unsecured Amazon S3 buckets which expose private data

Ethical hackers are warning businesses who use Amazon S3 cloud storage if they have left data exposed for anyone to access… by leaving “friendly warnings” on the servers.

Read more in my article on the We Live Security blog.

bitdefender.com

Amazon moves to stop S3 buckets leaking business data

Businesses don’t need to be targeted by sophisticated hackers to have private and sensitive data splashed across the newspaper headlines.

Read more in my article on the Bitdefender Business Insights blog.

Viacom cloud config goof exposed Paramount Pictures, Comedy Central, MTV, and more

Carelessness is believed to have exposed access credentials and other critical information assets owned by media giant Viacom Inc, leaving them viewable by anyone with an internet connection.

David Bisson reports.

US defense contractor secures Amazon S3 bucket after leaving sensitive data publicly exposed

A defense contractor has secured an Amazon S3 bucket containing sensitive intelligence data after accidentally leaving it publicly exposed.

David Bisson reports.