According to foreign media reports, recently, the US Department of Defense contractor was found to be sensitive to government data stored in the unprotected Amazon server. In other words, anyone can access the information from the Department of Defense without a password. Was informed that the information was stored in a publicly accessible S3 cloud storage “bucket”. Relevant evidence shows that the source of this problem comes from an information and defense consultancy called Booz Allen Hamilton (BAH).
BAH signed a $86 million contract with the National Geospatial Intelligence Service (NGA), which is part of the Department of Defense.
Last week, Chris Vickery, a network risk analyst at UpGuard, a network risk company, discovered the vulnerability and immediately sent an e-mail to BAH and NGA to remind them. NGA protects these data within 10 minutes. However, according to foreign media Gizmodo said, BAH stored in the Amazon server data does not contain any confidential information, but they still have enough for those who want to conduct misconduct in the certificate.
The post US Department of Defense data is found to be stored on unprotected Amazon servers appeared first on Penetration Testing. http://ift.tt/2rwEZSO http://ift.tt/2aM8QhC