Lion Air Data Breach! Another Misconfigured S3 Bucket

According to Dark Reading, Lion Air’s breach resulted when files containing the Indonesian airlines’ passenger names, passport numbers, birth dates, home addresses, and other data — was left openly accessible in an AWS S3 Bucket.

DivvyCloud CTO and co-founder, Chris DeRamus, recently spoke with Dark Reading about the breach that reportedly exposed data on millions of passengers of two Lion Air airline subsidiaries.

Amazon has been actively working to help companies avoid breaches caused by misconfigurations. It has also added a number of new features to augment data protection and simplify compliance. For instance, AWS has made it easier for organizations to ensure encryption of all new objects, along with monitoring and reporting on their encryption status. AWS also has guidance on using tools like AWS Config to monitor and respond to S3 buckets that allow public access.

 

Breaches of data in the cloud are on the rise, not breaches of the underlying cloud provider’s infrastructure. The cloud provider is responsible – and typically successful in – securing the underlying components of cloud services.

 

It is up to the customer to ensure secure use by properly configuring identity and access management, storage, and compute settings, and using threat analysis and defense tools to mitigate threats. Automated tools are available that allow organizations to perform real-time, continuous discovery of cloud infrastructure resources and to identify risks and threats that need to be remediated.

Make S3 bucket leaks a thing of the past (now and forever). Install DivvyCloud with a  free 30-day trial or speak with a DivvyCloud expert today!

Watch DivvyCloud’s 60-second video to learn how we help customers like GE, 3M, Autodesk, Discovery, and Fannie Mae stay secure and compliant.

DivvyCloud minimizes security and compliance risk by providing virtual guardrails for security, compliance, and governance to customers embracing the dynamic, self-service nature of public cloud, and container infrastructure. Customers like General Electric, Discovery Communications, and Fannie Mae run DivvyCloud’s software to achieve continuous security governance in cloud and container environments (AWS, Azure, GCP, Alibaba, and Kubernetes). First, our software performs real-time, continuous discovery of infrastructure resources allowing customers to identify risks and threats. Second, customers can implement out-of-the-box or custom cloud-native policy guardrails that identify and alert on violations. Third, we automate the enforcement and remediation of these policies.