Amazon Prime Video server full of online viewer data has been exposed

Amazon Prime Video server full of online viewer data has been exposed

Another day, another misconfiguration Database Leaking sensitive customer data to the wider internet.

This time, the culprit is none other than Amazon, according to you Take Crunch (Opens in a new tab)Recently, cybersecurity researcher Anurag Sen discovered a major Amazon database, no The password Whatever protections it is, it’s available to anyone who knows where to look.

With the help of Shodan – a search engine for things connected to the Internet, Sen discovered the database, called Sauron, and found it full of Amazon Prime watching habits.

Posting error

Altogether, the database contained nearly 215 million entries of pseudonymized viewing data – meaning that while there is a lot of data about specific customers to learn about their viewing habits, it’s virtually impossible to associate these accounts with actual data. Matches. Sauron contains things like movie/series name, device used to stream content, network quality, client subscription plan, etc.

The database was reportedly first revealed in late September 2022, after which Amazon was reported, removing the system from the wider internet.

“A deployment error occurred with the Prime Video analytics server. This issue is resolved and no account information (including login or payment details) was disclosed. This was not an AWS issue; AWS is secure by default and implemented by design,” Take Crunch Amazon spokesman Adam Montgomery was cited.

Misconfigurations in the cloud are nothing new, and researchers have warned for years that this man-made bug is a major cause of data breaches. In fact, a 2021 IBM report claimed that 19% of data breaches occur because IT teams fail to properly protect assets in the cloud infrastructure. The company surveyed more than 500 organizations that experienced a data breach for the report, and learned that for half (52%), securing data stored in the public cloud remained a challenge.

Furthermore, Accurics’ report from 2020 stated that “almost all” cloud storage (Opens in a new tab) Deployments are misconfigured.

Total
0
Shares
Leave a Reply

Your email address will not be published. Required fields are marked *

Prev
Apple launched a new Security Center to help spot bugs and flaws
Apple launched a new Security Center to help spot bugs and flaws

Apple launched a new Security Center to help spot bugs and flaws

Apple unveiled a file New security center And a bounty hunting program developed

Next
Nintendo Switch can’t handle Call of Duty
Nintendo Switch can't handle Call of Duty

Nintendo Switch can’t handle Call of Duty

The Wall Street Journal Tech Live event was a lively event for Xbox president,

You May Also Like