Study Reveals Vulnerabilities in Abandoned Amazon S3 Buckets
/ 1 min read
🪣✨ Research reveals alarming vulnerabilities in abandoned Amazon S3 buckets. A recent study by watchTowr demonstrated the potential for significant supply chain attacks through the exploitation of approximately 150 abandoned Amazon S3 buckets. Over two months, the researchers logged more than 8 million requests for various files, including software updates and binaries, from sensitive organizations such as government agencies and Fortune 500 companies. The findings highlight the risks associated with unmonitored infrastructure, as attackers could have served malicious content to unsuspecting users. AWS has since agreed to sinkhole the identified buckets, mitigating immediate risks, but the research underscores the need for better management of digital resources to prevent future vulnerabilities.
