CSOonline

AWS access control confusion enables cross-account attacks

The Amazon Web Services identity and access management (IAM) mechanism is complex, and not fully understanding its particularities often leads to misconfigurations and exposed cloud assets.
ZDNet

AWS rolls out new security feature to prevent accidental S3 data leaks

Amazon's Web Services division has rolled out new security features to AWS account owners today that are meant to prevent accidental data exposures caused by the misconfiguration of S3 data storage ...
Bleeping Computer

How attackers abuse S3 Bucket Namesquatting — And How to Stop Them

With the sheer amount of data and users leveraging AWS, it’s easy for misconfigurations to slip through the cracks. One commonly overlooked area is the naming of S3 buckets. AWS S3 bucket names are ...