Cloud buckets are scarey, do you know what your users are putting out there ?
“... Identified open S3 bucket -> backup files -> credential file -> partial compromise of AWS -> pivot to other cloud instances -> credential file -> full compromise ...”
https://twitter.com/vysecurity/status/970769553016815616?s=21
No comments:
Post a Comment