Forbes

Safeguarding S3 Buckets: Mitigating CORS Misconfigurations

Amazon Simple Storage Service (S3) is a scalable object storage service provided by AWS that enables users to store and retrieve data from anywhere on the web. It is widely used for a variety of ...
GIGAZINE

Empty S3 buckets cause AWS bills to explode, Amazon announces it will address the issue

As a proof of concept for a document indexing system he was building for a client, Pocwierz created a single S3 bucket in the AWS ' eu-west-1 ' region and uploaded several files for testing. After ...
InfoWorld

Amazon S3 storage buckets set to ‘public’ are ripe for data-plundering

Using a combination of relatively low-tech techniques and tools, security researchers have discovered that they can access the contents of one in six Amazon Simple Storage Service (S3) buckets. Those ...
Dark Reading

Twilio Security Incident Shows Danger of Misconfigured S3 Buckets

Twilio, the cloud communications platform-as-a-service (CPaaS) giant, has confirmed a security incident in which attackers accessed a misconfigured Amazon AWS S3 bucket and modified the TaskRouter ...
Threat Post

Sensitive Enterprise Data Exposed in Amazon S3 Public Buckets

UPDATE – With companies flocking to cloud services such as Amazon Simple Storage Service (S3) to store and serve static content on the cheap, naturally they’re making simple mistakes in doing so—and ...
CSOonline

Abandoned AWS S3 buckets open door to remote code execution, supply-chain compromises

Attackers re-register abandoned AWS S3 buckets filled with malicious files that are executed by applications looking for these buckets. Code references to nonexistent cloud assets continue to pose ...
TechNewsWorld

Threat of Ransomware Lurks in Amazon S3 Buckets

New research from cloud security firm Ermetic shows that nearly all businesses have identities that, if compromised, would place at least 90 percent of the S3 buckets in their AWS account at risk.