S3

Expanding the Serverless War Chest With AWS EFS

Expanding the Serverless War Chest With AWS EFS

| | AWS EFS, aws lambda, S3, serverless
...
Thundra blog
What's Falling Out of Your Wallet: S3 Bucket Vulnerabilities & the CapitalOne Breach

IAM Root: AWS IAM Simulator Tutorial

| | Assessing Cloud Security, aws, , AWS Environment, AWS Remediation, Best Practices, Breach, Capital One breach, Cloud Security Assessment, Compromise, Data Loss Prevention, IAM policy, IAM policy simulator tutorial, IAM Policy Tutorial, IAM Roles, Infrastructure, Prevent data leak, S3, Security misconfiguration
If you needed yet another reason to be paranoid about your personal information being exposed, the recent Capital One breach should be sufficient nightmare fuel for you. This is even more supporting ...
Professionally Evil Insights
Magecart Actors Using Spray and Pray Tactics to Find Misconfigured Buckets

Magecart Actors Using Spray and Pray Tactics to Find Misconfigured Buckets

| | bucket, Cloud, IT Security and Data Protection, Latest Security News, Magecart, S3
Magecart actors are using spray and pray tactics to discover misconfigured Amazon S3 buckets and deploy their payment card skimmers. In April 2019, RiskIQ began tracking a Magecart group campaign in which ...
The State of Security
Taming the Jungle: Hardening your AWS infrastructure

Taming the Jungle: Hardening your AWS infrastructure

| | ACL, Amazon Web Services, aws, Best Practices, IAM policy, information leaks, Information Security, Infrastructure, least privilage, S3
After nine tutorials, sixteen posts on stack overflow, and several hours or workweeks of effort you’ve finally done it. You’ve finally got something in Amazon Web Services (AWS) to work as expected ...
Professionally Evil Insights
Insurance Software Provider Exposed Clients’ Data Stored on S3 Bucket

Insurance Software Provider Exposed Clients’ Data Stored on S3 Bucket

| | Cloud, data, Latest Security News, S3
An insurance software provider exposed clients’ sensitive data that it had stored on an Amazon Simple Storage Solution (S3) bucket. Andrew Lech, founder of AgentRun, confirmed the breach in an email sent ...
The State of Security

Preventing Azure Storage Breaches

| | aws, azure, Blobs, buckets, Cloud, S3, security bloggers network
In my previous post, I took deep dive into AWS S3 permissions to outline the myriad of ways someone could expose their AWS S3 buckets and objects to everyone on the Internet ...
The State of Security