This page collects WhisperX intelligence signals tagged #AWS Security. It is designed for humans, search engines, and AI agents: each item links to a canonical source-backed record with sector, source, timestamp, credibility, and exportable structured data.
A massive data exposure at money transfer app Duc left thousands of customers' sensitive identity documents, including driver's licenses and passports, accessible to anyone on the open web. The breach stemmed from an improperly secured Amazon-hosted server that required no password for access, exposing reams of persona...
A critical security oversight has been identified in a NASA Planetary Data System (PDS) Lambda function, exposing a potential vector for confused deputy attacks. The function `pds-nucleus-s3-file-event-processor.py` is missing the `ExpectedBucketOwner` parameter in its S3 `get_object` call, a standard AWS security best...