It has been reported that a contractor working for mobile giant Sprint stored hundreds of thousands of cell phone bills of AT&T, Verizon and T-Mobile subscribers on an unprotected cloud server. The AWS storage bucket had more than 261,300 documents, the vast majority of which were phone bills belonging to cell subscribers dating as far back as 2015. It was not protected with a password, allowing anyone to access the data inside. It’s not known how long the bucket was exposed.
Experts Comments
Linkedin Message
@Colin Bastable, CEO , provides expert commentary at @Information Security Buzz.
"The open nature of the database also supports the marketing/sales angle...."
#infosec #cybersecurity #isdots
https://informationsecuritybuzz.com/expert-comments/sprint-contractor-left-aws-bucket-containing-thousands-of-mobile-phone-bills-exposed
Facebook Message
@Colin Bastable, CEO , provides expert commentary at @Information Security Buzz.
"The open nature of the database also supports the marketing/sales angle...."
#infosec #cybersecurity #isdots
https://informationsecuritybuzz.com/expert-comments/sprint-contractor-left-aws-bucket-containing-thousands-of-mobile-phone-bills-exposed
Linkedin Message
@Satya Gupta, CTO, provides expert commentary at @Information Security Buzz.
"Organizations need to establish much stronger controls on who can set up and access cloud storage...."
#infosec #cybersecurity #isdots
https://informationsecuritybuzz.com/expert-comments/sprint-contractor-left-aws-bucket-containing-thousands-of-mobile-phone-bills-exposed
Facebook Message
@Satya Gupta, CTO, provides expert commentary at @Information Security Buzz.
"Organizations need to establish much stronger controls on who can set up and access cloud storage...."
#infosec #cybersecurity #isdots
https://informationsecuritybuzz.com/expert-comments/sprint-contractor-left-aws-bucket-containing-thousands-of-mobile-phone-bills-exposed
Be part of our growing Information Security Expert Community (1000+), please register here.
Linkedin Message
@Jonathan Deveaux, Head of Enterprise Data Protection, provides expert commentary at @Information Security Buzz.
"A more effective approach is to think ‘security first’. ..."
#infosec #cybersecurity #isdots
https://informationsecuritybuzz.com/expert-comments/sprint-contractor-left-aws-bucket-containing-thousands-of-mobile-phone-bills-exposed
Facebook Message
@Jonathan Deveaux, Head of Enterprise Data Protection, provides expert commentary at @Information Security Buzz.
"A more effective approach is to think ‘security first’. ..."
#infosec #cybersecurity #isdots
https://informationsecuritybuzz.com/expert-comments/sprint-contractor-left-aws-bucket-containing-thousands-of-mobile-phone-bills-exposed