"Misconfigured AWS Bucket Exposes Hundreds of Social Influencers"

Researchers at vpnMentor have discovered that a misconfigured cloud storage bucket has exposed hundreds of social media influencers' personal details, potentially putting them at risk of fraud and harassment.  The misconfigured AWS S3 bucket was discovered back in early November and was wide open with no encryption or password protection.  The researchers notified Barcelona-based company 21 Buttons about the misconfigured AWS S3 bucket in November.  However, no action has been taken by the company to fix the issue.  The misconfigured cloud storage bucket contains 50 million files, which are mainly influencer photos and videos.  The research team also discovered hundreds of invoices related to payments made to the social media influences.  Among the personally identifiable information (PII) exposed were full names, postal codes, bank details, national ID numbers, and PayPal email addresses.

Infosecurity reports: "Misconfigured AWS Bucket Exposes Hundreds of Social Influencers"

 

Submitted by Anonymous on