Verizon Wireless Confidential Data Discovered from Publicly Access Amazon AWS S3 Bucket contains the Confidential information About internal Verizon Wireless system.
The File Size of the Bucket Around 100 MB of Data that contains the information of DVS (Distributed Vision Services).
According to Kromtech Security researchers, DVS is the middleware and centralized environment for all of Verizon Wireless (the cellular arm of VZ) front-end applications, used to retrieve and update the billing data.
Discovered Repository files named as “VZ Confidential” and “Verizon Confidential” which contains some sensitive information such as usernames, passwords.
These Credential information helps to easily allow access to other parts of Verizon’s internal network and infrastructure.
Publicly Access Repository contained information about,129 saved Outlook messages with access info and internal communications, B2B payment server names and info, Command notes, logs including, Admin user info that could potentially allow access to other parts of the network.
Further Analysed Conformed that this information about the Verizon Wireless was self-owned by Verizon Wireless engineer and it did not belong or managed by Verizon.
According to Bob Diachenko, chief security communications officer, Kromtech“Our primary goal is to notify and secure the data not dispute if they are being honest or not. As more and more data leaks occur it makes consumers, and average individuals more vulnerable online.”
“We believe that companies have an obligation to not only take the proper security measures but also protect the data their employee collect and store”.