Monday, October 7, 2024
HomeComputer SecurityNew AWS Security Feature To Stop Accidental S3 Public Exposure

New AWS Security Feature To Stop Accidental S3 Public Exposure

Published on

Amazon introduced S3 Block Public Access feature, a new level of protection which gives potential to block public access to newly created and for existing buckets and objects.

The feature works both in the account level as well as for the individual buckets, the feature is accessible from the S3 console CLI, the S3 APIs, and from within CloudFormation templates.

S3 Block Public Access

Starting from now AWS account and bucket owner will four new options for managing public ACLs and two for managing public bucket function and these functions can be accessed by APIs also.

- Advertisement - EHA

“We want to make sure that you use public buckets and objects as needed while giving you tools to make sure that you don’t make them publicly accessible due to a simple mistake or misunderstanding,” reads Amazon blog post.

AWS misconfiguration causes some major issues, because of misconfiguration number of companies exposed the data publically.

Starting last November Amazon bring’s up a Public indicator to show the list of buckets available in public and which are Not public.

Amazon S3 is object storage built to store and retrieve any amount of data from anywhere – websites and mobile apps, corporate applications, and data from IoT sensors or devices.

We heard about a number of Amazon bucket data exposures, where the companies exposed the sensitive data publically, one of the recent exposure was the web bucket belongs to ISP provider Pocket iNet, around 73 Gigabytes of data exposed.

Last August Godaddy leaked 18 million customers record with over 76M domain names, exposed data includes information such as hostname, operating system, workload, AWS region, memory and CPU specs, and more.

Gurubaran
Gurubaran
Gurubaran is a co-founder of Cyber Security News and GBHackers On Security. He has 10+ years of experience as a Security Consultant, Editor, and Analyst in cybersecurity, technology, and communications.

Latest articles

Chinese Group Hacked US Court Wiretap Systems

Chinese hackers have infiltrated the networks of major U.S. broadband providers, gaining access to...

19.6K+ Public Zimbra Installations Vulnerable to Code Execution Attacks – CVE-2024-45519

A critical vulnerability in Zimbra's postjournal service, identified as CVE-2024-45519, has left over 19,600...

Prince Ransomware Hits UK and US via Royal Mail Phishing Scam

A new ransomware campaign targeting individuals and organizations in the UK and the US...

Microsoft, DOJ Dismantle Domains Used by Russian FSB-Linked Hacking Group

Microsoft and the U.S. Department of Justice (DOJ) have successfully dismantled a network of...

Free Webinar

Decoding Compliance | What CISOs Need to Know

Non-compliance can result in substantial financial penalties, with average fines reaching up to $4.5 million for GDPR breaches alone.

Join us for an insightful panel discussion with Chandan Pani, CISO - LTIMindtree and Ashish Tandon, Founder & CEO – Indusface, as we explore the multifaceted role of compliance in securing modern enterprises.

Discussion points

The Role of Compliance
The Alphabet Soup of Compliance
Compliance
SaaS and Compliance
Indusface's Approach to Compliance

More like this

Chinese Group Hacked US Court Wiretap Systems

Chinese hackers have infiltrated the networks of major U.S. broadband providers, gaining access to...

19.6K+ Public Zimbra Installations Vulnerable to Code Execution Attacks – CVE-2024-45519

A critical vulnerability in Zimbra's postjournal service, identified as CVE-2024-45519, has left over 19,600...

Prince Ransomware Hits UK and US via Royal Mail Phishing Scam

A new ransomware campaign targeting individuals and organizations in the UK and the US...