CSOonline

S3 shadow buckets leave AWS accounts open to compromise

Attackers can gain access to AWS accounts or sensitive data by creating in advance S3 storage buckets with predictable names that will be automatically used by various services and tools. Researchers ...

Abandoned AWS S3 buckets can be reused in supply-chain attacks that would make SolarWinds look 'insignificant'

Abandoned AWS S3 buckets could be reused to hijack the global software supply chain in an attack that would make Russia's ...
Dark Reading

AWS Employee Flub Exposes S3 Bucket Containing GoDaddy Server Configuration and Pricing Models

Editors' note: This article and its headline was updated to correct details about ownership of the S3 bucket and contents therein. Another week, another publicly accessible AWS storage cloud found to ...
Network World

Ransomware gangs seize a new hostage: your AWS S3 buckets

Attackers are moving beyond on-prem systems and now using AWS’s own encryption and key management features to lock organizations out of their cloud data. Ransomware operators are shifting their focus ...