BTW.Media
战略互联网情报2026年6月09日
登入注册

Institution Profiling / 公司GLOBALINSTITUTIONAL

作者 Ava Yang 编辑团队

Crooks exploit AWS misconfigurations to steal data

Crooks exploit AWS misconfigurations to steal data is tracked as a internet infrastructure institution within the internet infrastructure ecosystem.

Crooks exploit AWS misconfigurations to steal data
作者Ava Yang
阅读时间1 分钟
发布时间2024年12月10日
最后更新2026年6月8日
主要领域Security
内容类型PROFILE
主题Market
实体Crooks exploit AWS misconfigurations to steal data
地区Global
时间范围Next quarter
影响Medium

Public-source signals support medium-impact monitoring for infrastructure visibility and dependency analysis.

Sources

Public references used for this article.

External references will appear here after editorial citation review.

分类Institution

Crooks exploit AWS misconfigurations to steal data is tracked as a internet infrastructure institution within the internet infrastructure ecosystem.

地区Global

Crooks exploit AWS misconfigurations to steal data has public-source relevance to network operations, governance, dependency mapping, or market structure.

信号重点Market

Crooks exploit AWS misconfigurations to steal data has public-source relevance to network operations, governance, dependency mapping, or market structure.

内容类型PROFILE

Crooks exploit AWS misconfigurations to steal data is tracked as a internet infrastructure institution within the internet infrastructure ecosystem.

主要领域Security

Public-source signals support medium-impact monitoring for infrastructure visibility and dependency analysis.

影响Medium

Public-source signals support medium-impact monitoring for infrastructure visibility and dependency analysis.

置信度?Confidence Grade
0.90–1.00AHigh — direct sources
0.75–0.89A/BStrong
0.55–0.74B/CMedium
0.35–0.54C/DWeak–medium
0.10–0.34DWeak signal
0.00–0.09DInternal monitoring
有限置信度 (82%)

多个公开来源

  • 网络犯罪分子利用错误配置的网站窃取AWS凭证和敏感数据,并使用开放的S3存储桶进行存储。
  • 此次泄露事件突显了正确配置云安全的重要性,以及遵守提供商与客户之间共同责任模型的必要性。
  • 与ShinyHunters和Nemesis网络犯罪组织有关联的攻击者利用开源工具扫描了数百万个AWS IP地址,以寻找暴露的凭证。

事件经过:与ShinyHunters关联的犯罪分子将窃取的AWS凭证和机密存储在开放的S3存储桶中

一场大规模的网络攻击针对的是AWS客户,网络犯罪分子利用公共网站的错误配置窃取AWS凭证和其他敏感数据。攻击者与ShinyHunters和Nemesis网络犯罪组织有关联,他们访问了超过2TB的数据,包括源代码、数据库凭证和电子邮件服务密钥。犯罪分子利用受害者错误配置的开放S3存储桶来存储窃取的数据。研究人员Noam Rotem Ran Locar在扫描不安全的云环境时发现了此次泄露,并向AWS和以色列网络局报告了此事。此次泄露持续了数月,攻击者利用各种开源工具和漏洞利用程序扫描了数百万个AWS IP地址,以寻找暴露的凭证和机密。

相关阅读: AWS推出下一代AI芯片和云实例
相关阅读: AWS承诺拨款1亿美元云信用额度促进教育

为何重要

此次泄露突显了云安全中的一个关键漏洞:云提供商与其客户之间的共同责任模型。尽管AWS提供了安全的基础设施,但客户有责任确保正确配置和处理敏感数据。攻击者利用错误配置的公共网站窃取凭证、密钥和机密,凸显了数据管理不善的风险。 另见: Ziggo集团任命领导人,备战2027年阿姆斯特丹上市.

一个关键问题是犯罪分子利用开放的S3存储桶存储了超过2TB的被盗数据。这暴露了攻击者的基础设施,并突显了不安全的云存储的危险。此外,ShinyHunters等主要网络犯罪组织的参与说明了这些攻击的复杂性。此次泄露提醒我们保护AWS凭证的重要性,并使用如AWS Secrets Manager等工具来防止泄露。 另见: ECHOES 协会.

云用户需要遵循安全最佳实践,例如定期审计云环境、保护敏感数据,并确保凭证不会硬编码在代码或存储库中。通过遵循这些预防措施,可以最大限度地降低与云错误配置相关的风险,从而有助于防止此类规模的泄露。 另见: IT部门 - Athlok.

Domain of operation

Crooks exploit AWS misconfigurations to steal data is profiled by BTW Media because published evidence links it to internet infrastructure, governance, operational dependencies, or market visibility.

  • Public role: Crooks exploit AWS misconfigurations to steal data is framed by crooks exploit aws misconfigurations to steal data is tracked as a internet infrastructure institution within the internet infrastructure ecosystem. and public security context. 证据基础: Crooks exploit AWS misconfigurations to steal data article record; Crooks exploit AWS misconfigurations to steal data article record
  • Operating surface: Market and Global provide the public context for this institution profile. 证据基础: Crooks exploit AWS misconfigurations to steal data article record; Crooks exploit AWS misconfigurations to steal data article record

时间线

  1. Crooks exploit AWS misconfigurations to steal data public profile updated

    Public coverage records Crooks exploit AWS misconfigurations to steal data as a subject for role, operating context, and evidence review.

概要

  • 名称: Crooks exploit AWS misconfigurations to steal data
  • 类型: Internet infrastructure institution
  • 所在地: Global
  • 档案重点: Institution

功能说明

  • 公开记录可用于跟踪其角色、服务和关键关系。

重要性

  • Public-source signals support medium-impact monitoring for infrastructure visibility and dependency analysis.
  • 运营关键性: Medium
  • 时间范围: Next quarter

关注事项

  • 监测重点是经核实的服务连续性、治理变化和关系信号。
当前Medium 优先级

跟踪经验证的来源更新、角色变化和当前公开证据。

季度Medium 政策敏感度

Public-source signals support medium-impact monitoring for infrastructure visibility and dependency analysis.

年度Next quarter 展望

长期相关性取决于经验证的运营、政策和关系变化。

会员简报

深度档案背景

登录后可解锁完整档案简报和来源说明。

仅限战略圈

战略圈

所有读者均可浏览。加入并登录后可解锁档案简报。

加入战略圈

仅限领导联盟

领导联盟

面向符合条件的 IP 资产所有者和管理层;登录后可解锁联盟简报。

加入领导联盟

公开视角

The public read of Crooks exploit AWS misconfigurations to steal data is limited to visible role, operating context, and relationship evidence.

观察点

  • New public role, affiliation, product, policy, or market disclosures.
  • Verified relationship changes involving named organizations or people.

限制说明

  • Private or unverified claims are excluded from this public view.

常见问题

Why is Crooks exploit AWS misconfigurations to steal data included?

Crooks exploit AWS misconfigurations to steal data has public evidence that makes the institution relevant to BTW's coverage of digital infrastructure, governance, or markets.

What is public about this profile?

The public layer covers visible role, operating context, linked organizations, and evidence-backed watchpoints.

What should readers watch next?

Readers should watch for source-backed role changes, new partnerships, regulatory exposure, operating expansion, or evidence that changes the public assessment.

返回全部公司