S3 bucket – Experimental News Clipping Site

The Register: Generative AI app goes dark after child-like deepfakes found in open S3 bucket

Apr 1, 2025

—

by

Source URL: https://www.theregister.com/2025/04/01/nudify_website_open_database/ Source: The Register Title: Generative AI app goes dark after child-like deepfakes found in open S3 bucket Feedly Summary: ‘They went silent and secured the images,’ Jeremiah Fowler tells El Reg Jeremiah Fowler, an Indiana Jones of insecure systems, says he found a trove of sexually explicit AI-generated images exposed to the…

CSA: SaaS & IaaS Security: Protect Cloud Environments

Mar 27, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://www.valencesecurity.com/resources/blogs/saas-security-and-iaas-security—why-you-need-both Source: CSA Title: SaaS & IaaS Security: Protect Cloud Environments Feedly Summary: AI Summary and Description: Yes Summary: The text provides an in-depth analysis of the security risks associated with SaaS (Software-as-a-Service) and IaaS (Infrastructure-as-a-Service) cloud computing environments. It highlights critical challenges such as identity management, misconfigurations, and data exposure, and discusses…

The Register: Capital One cracker could be sent back to prison after judges rule she got off too lightly

Mar 21, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://www.theregister.com/2025/03/21/capital_one_appeal/ Source: The Register Title: Capital One cracker could be sent back to prison after judges rule she got off too lightly Feedly Summary: Feds want harsher sentence for Paige Thompson, who pinched 100M customer records Paige Thompson, the perpetrator of the Capital One data theft, may be sent back behind bars after…

Hacker News: ‘Uber for nurses’ exposes 86K+ medical records, PII via open S3 bucket

Mar 13, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://www.websiteplanet.com/news/eshyft-report-breach/ Source: Hacker News Title: ‘Uber for nurses’ exposes 86K+ medical records, PII via open S3 bucket Feedly Summary: Comments AI Summary and Description: Yes Summary: The text discusses a significant cybersecurity incident involving the exposure of a non-password-protected database belonging to ESHYFT, a healthtech company. The incident raises critical issues about privacy…

The Register: ‘Uber for nurses’ exposes 86k+ medical records, PII in open S3 bucket for months

Mar 11, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://www.theregister.com/2025/03/11/uber_for_nurses_exposes_86k/ Source: The Register Title: ‘Uber for nurses’ exposes 86k+ medical records, PII in open S3 bucket for months Feedly Summary: Non-password-protected, unencrypted 108GB database…what could possibly go wrong Exclusive More than 86,000 records containing nurses’ medical records, facial images, ID documents and more sensitive info linked to health tech company ESHYFT was…

Simon Willison’s Weblog: Using S3 triggers to maintain a list of files in DynamoDB

Feb 19, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://simonwillison.net/2025/Feb/19/s3-triggers/#atom-everything Source: Simon Willison’s Weblog Title: Using S3 triggers to maintain a list of files in DynamoDB Feedly Summary: Using S3 triggers to maintain a list of files in DynamoDB I built an experimental prototype this morning of a system for efficiently tracking files that have been added to a large S3 bucket…

The Register: Chinese spies suspected of ‘moonlighting’ as tawdry ransomware crooks

Feb 14, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://www.theregister.com/2025/02/14/chinese_spies_ransomware_moonlighting/ Source: The Register Title: Chinese spies suspected of ‘moonlighting’ as tawdry ransomware crooks Feedly Summary: Some employees steal sticky notes, others ‘borrow’ malicious code A crew identified as a Chinese government-backed espionage group appears to have started moonlighting as a ransomware player – further evidence that lines are blurring between nation-state cyberspies…

AWS News Blog: AWS CloudTrail network activity events for VPC endpoints now generally available

Feb 13, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://aws.amazon.com/blogs/aws/aws-cloudtrail-network-activity-events-for-vpc-endpoints-now-generally-available/ Source: AWS News Blog Title: AWS CloudTrail network activity events for VPC endpoints now generally available Feedly Summary: AWS CloudTrail now offers network activity events for VPC endpoint logging, enabling comprehensive monitoring and recording of AWS API activity through VPC endpoints to enhance security visibility, detect unauthorized access, and prevent data exfiltration…

Hacker News: Delivering Malware Through Abandoned Amazon S3 Buckets

Feb 12, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://www.schneier.com/blog/archives/2025/02/delivering-malware-through-abandoned-amazon-s3-buckets.html Source: Hacker News Title: Delivering Malware Through Abandoned Amazon S3 Buckets Feedly Summary: Comments AI Summary and Description: Yes Summary: The text discusses a concerning vulnerability in software supply chain security, specifically targeting abandoned Amazon S3 buckets that could serve as a platform for malware delivery. The research highlights the potential risks…

Schneier on Security: Delivering Malware Through Abandoned Amazon S3 Buckets

Feb 12, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://www.schneier.com/blog/archives/2025/02/delivering-malware-through-abandoned-amazon-s3-buckets.html Source: Schneier on Security Title: Delivering Malware Through Abandoned Amazon S3 Buckets Feedly Summary: Here’s a supply-chain attack just waiting to happen. A group of researchers searched for, and then registered, abandoned Amazon S3 buckets for about $400. These buckets contained software libraries that are still used. Presumably the projects don’t realize…

Tag: S3 bucket