According to security researchers, a massive online heist targeting AWS customers is still ongoing, highlighting severe issues with misconfigured public websites utilized by cybercriminals for data theft.
Experts Noam Rotem and Ran Locar identified and reported the involvement of some miscreants to the Israeli Cyber Directorate and AWS Fraud Team, stressing the importance of proactive reporting in cybersecurity.
The investigation revealed that the criminals were in pursuit of various sensitive data, including AWS keys, database credentials, Git credentials, and more, showcasing the breadth of their illicit goals.
Notably, crooks misconfigured an open S3 bucket, inadvertently allowing researchers to access over 2 TB of stolen data, emphasizing critical flaws in data protection practices.
Collection
[
|
...
]