Verizon Data exposed on AWS Servers

American Telecommunicatons giant Verizon Wireless has been claimed to have left about 100MB of data that was allegedly operated by a Verizon employee in the Amazon S3 server.

The server in which the data was found was an open one and was not owned by Verizon, and according to the Kromtech Security researchers, the data in it contained Verizon corporate information connected to an internal system called Distributed Vision Services (DVS), but no customer data was involved.

Kromtech described DVS as “ the middleware and centralized environment for all of Verizon Wireless (the cellular arm of VZ) front-end applications, used to retrieve and update the billing data.”

“ Upon analyzing the content of the repository, we identified the alleged owner of the bucket and sent responsible notification email on September 21st. Shortly after that, online archive has been took down and it has been later confirmed that the bucket was self-owned by Verizon Wireless engineer and it did not belong or managed by Verizon,” wrote Bob Diachenko, Kromtech' s chief security communications officer.

It is believed that some of the content which was found in the server was labeled “ VZ Confidential” and some others were labeled “ Verizon Confidential,” in which, some information on internal communications, usernames and passwords that could be used to access other parts of Verizon' s network were present.

This is not the first time that Verizon has faced a vulnarable situation this year. Earlier this year, a similar situation made the telecommunications giant unprotected on the Amazon server in which 14 million Verizon customer records were exposed on a mis-configured server being operated by a third-party vendor.

Tag : AWS –CLI
FAQ
Q
What is AWS IAM?
A
AWS Identity and Access Management (IAM) enables you to manage access to AWS services and resources securely. Using IAM, you can create and manage AWS users and groups, and use permissions to allow and deny their access to AWS resources.
Q
What is s3 in AWS?
A
Amazon S3 (Simple Storage Service) is a cloud computing web service offered by Amazon Web Services (AWS). Amazon S3 provides object storage through web services interfaces (REST, SOAP, and BitTorrent). S3 uses include web hosting, image hosting, and storage for backup systems.
Q
What is ec2 in AWS?
A
Amazon Elastic Compute Cloud (Amazon EC2) provides scalable computing capacity in the Amazon Web Services (AWS) cloud. ... You can use Amazon EC2 to launch as many or as few virtual servers as you need, configure security and networking, and manage storage.
Q
What does AWS stand for?
A
Amazon Web Services
Amazon Web Services (AWS) is a secure cloud services platform, offering computing power, database storage, content delivery, and other functionality to help businesses scale and grow.
Q
What is AWS and how it works?
A
Amazon Web Services (AWS) is a subsidiary of Amazon.com that offers on-demand cloud computing platforms. Cloud computing is the on-demand delivery of computing power, database storage, applications, and other IT resources through a cloud services platform via the internet with pay-as-you-go pricing.