In these attacks, companies allowed data to be exposed on cloud-based servers that they did not configure properly, leading to the exposure of sensitive data. It is incredibly important to remember that your organization is responsible for the configuration of your cloud services. Shifting your technology to a third party does not remove your responsibility regarding data protection.
Vendor |
Date reported |
Data disclosed |
URLs |
Booz Allen Hamilton |
May 13, 2017 |
Sensitive US Federal Government Information |
https://www.cyberscoop.com/booz-allen-hamilion-amazon-s3-chris-vickery/ |
Viacom |
September 19, 2017 |
Internal company IT configurations |
https://www.theregister.co.uk/2017/09/19/viacom_exposure_in_aws3_bucket_blunder/ |
Verizon Wireless |
September 22, 2017 |
Internal Company IT Configurations |