The security team at Datadog recently disclosed a security issue on AWS where non-production endpoints were used as an attack surface to silently perform permission enumeration. AWS has since remediated these specific bypasses.
Source: InfoQ
Non-Production Endpoints as an Attack Surface in AWS
- The Importance of Team Culture in Startups – Brian Carbaugh – FS #4
- Data breach exposes 122M records from DemandScience following initial denials
- Bitsight acquires threat intelligence provider Cybersixgill for $115M
- Using Machine Learning to Prevent Fraud in E-Commerce Transactions
- 122 million people’s business contact info leaked by data broker