All posts tagged "AWS"
-
4.0KMalwareUnpatched Travis CI API Bug Exposes Thousands of Secret User Access Tokens
An unpatched security issue in the Travis CI API has left tens of thousands of developers’ user tokens exposed to potential attacks,...
-
4.3KMalwareHackers Use Cloud Services to Distribute Nanocore, Netwire, and AsyncRAT Malware
Threat actors are actively incorporating public cloud services from Amazon and Microsoft into their malicious campaigns to deliver commodity remote access trojans...
-
4.5KData SecurityGhana govt agency exposed 700k citizens’ data in a database mess up
Ghana’s National Service Secretariate – NSS – exposed 55GB worth of citizens’ data when an AWS S3 bucket used by the Secretariate...
-
2.4KData SecurityLogistics giant D.W. Morgan exposed 100 GB worth of clients’ data
The clients affected by the incident involving a misconfigured Amazon S3 bucket include Global 500 company Ericsson and Fortune 500 company Cisco. ...
-
3.8KData SecurityGerman audio tech giant Sennheiser exposed 55GB of customers’ data
Sennheiser left personal data of over 28,000 customers exposed on a misconfigured Amazon Web Services (AWS) server. According to a report from...
-
732Data SecurityAmazon Web Service outage is impacting major websites
Amazon Web Service (AWS) is suffering a major service outage that is affecting popular platforms in regions where the company provides services....
-
2.2KData SecurityWiFi software management firm exposed millions of users’ data
Brazil-based WiFi management software firm WSpot exposed extensive details of high-profile firms and millions of customers. WSpot provides software to let businesses...
-
2.3KCyber EventsMicrosoft Azure customer hit by 2.4 Tbps DDoS attack
Microsoft has confirmed to mitigate a massive DDoS attack originated from a botnet comprising 70,000 compromised IoT devices. Microsoft reported that an...
-
343Data SecurityS3 bucket mess up exposed 182GB of senior US, Canada citizens data
The misconfigured S3 bucket was owned by SeniorAdvisor, a consumer ratings and reviews website. WizCase’s cybersecurity researchers discovered a misconfigured Amazon S3...
-
2.2KData SecurityDefunct marketing firm exposed 32GB worth of records, customers data
The misconfigured Amazon S3 bucket belonged to Reindeer, a now-defunct marketing company based in the United States. Threat analysis from the WizCase...
-
515Data SecurityMisconfigured AWS bucket exposed 421GB of Artwork Archive data
The trove of data was left exposed unencrypted and without any password or security authentication. The team of IT security researchers at...
-
4.9KNewsA UK recruitment firm exposed sensitive applicants data for months
The company was informed about the exposed data in December 2020 but it only responded and secured the data in March 2021....
-
675NewsAmazon Wants More Power, Designs Faster ARM-Based Server Chip
A big share of Amazon’s success is contributed by its cloud services, known as Amazon Web Services (AWS). But the e-commerce giant...
-
655Cyber EventsAWS hit by massive DDoS attacks that lasted 8 hours
Under “usual circumstances,” AWS makes headlines for exposing databases of companies using its services. A few days ago (Oct 22, 2019), the...
-
323Vulnerability AnalysisTarnish – A Chrome Extension for Static Analysis
tarnish is a static-analysis tool to aid researchers in security reviews of Chrome extensions. It automates much of the regular grunt...
-
260Vulnerability AnalysisManaTI – A Web-Based Tool To Assist The Intuitive Threat Analysts
Machine Learning for Threat Intuitive Analysis The goal of the ManaTI project is to develop machine learning techniques to assist an...
-
267NewsLeaky database exposes tax records of 20 million Russians
A few months back, we saw the personal data of over 188 million people leak due to an insecure MongoDB Database. Then...
-
297Security ToolsScoutSuite – Multi-Cloud Security Auditing Tool
Scout Suite is an open source multi-cloud security-auditing tool, which enables security posture assessment of cloud environments. Using the APIs exposed...
-
233Exploitation ToolsBotb – A Container Analysis And Exploitation Tool
BOtB is a container analysis and exploitation tool designed to be used by pentesters and engineers while also being CI/CD friendly...
-
261Vulnerability AnalysisMondoo – Cloud-Native Security And Vulnerability Analysis
Mondoo is infrastructure and security analytics your cloud-native applications. By removing the code literacy, we strive to make infrastructure operations and...
-
330Data SecurityDatabase with millions of Instagram influencers’ info leaked online
The leaked database was discovered on Shodan on May 14th. A huge online database containing private contact information including phone numbers and...
