---
title: "A Hole in the S3 Buckets"
id: "14010"
type: "podcast"
slug: "a-hole-in-the-s3-buckets"
published_at: "2023-06-08T10:00:00+00:00"
modified_at: "2023-10-18T23:06:30+00:00"
url: "https://www.lastweekinaws.com/podcast/aws-morning-brief/a-hole-in-the-s3-buckets/"
markdown_url: "https://www.lastweekinaws.com/podcast/aws-morning-brief/a-hole-in-the-s3-buckets.md"
taxonomy_shows:
  - "Last Week In AWS"
---

About the Author Corey is the Chief Cloud Economist at Duckbill, where he specializes in helping companies improve their AWS bills by making them smaller and less horrifying. He also hosts the "Screaming in the Cloud" and "AWS Morning Brief" podcasts; and curates "Last Week in AWS," a weekly newsletter summarizing the latest in AWS news, blogs, and tools, sprinkled with snark and thoughtful analysis in roughly equal measure.

[https://podcasts.apple.com/us/podcast/aws-morning-brief/id1466344305](https://podcasts.apple.com/us/podcast/aws-morning-brief/id1466344305)

[https://overcast.fm/itunes1466344305/aws-morning-brief](https://overcast.fm/itunes1466344305/aws-morning-brief)

[https://pca.st/AKs0](https://pca.st/AKs0)

[https://podcastaddict.com/podcast/2382583](https://podcastaddict.com/podcast/2382583)

[https://open.spotify.com/show/3A04JNrNAcZMvn8cvDWpWU](https://open.spotify.com/show/3A04JNrNAcZMvn8cvDWpWU)

[https://feeds.transistor.fm/aws-morning-brief](https://feeds.transistor.fm/aws-morning-brief)

## Episode Summary

Last week in security news: Thinkst Canary's Thinkstscapes, Multiple S3 Bucket Negligence Awards, Credit Card Payment Processing on AWS, and more!

## Episode Show Notes & Transcript

**Links:**

- [Thinkst Canary's Thinkstscapes](https://thinkst.com/ts)
- It's been a while since we've seen a strong, confirmed [S3 Bucket Negligence Award](https://www.darkreading.com/ics-ot/toyota-cloud-data-breach-jeopardizes-thousands-customers) , but Toyota has a massive one dating back a decade.
- Oof, looks like Google's CloudSQL product had a vulnerability that would allow an attacker to [escalate to GCP control plane permissions](https://www.scmagazine.com/news/cloud-security/google-cloud-patches-vulnerability-cloudsql) .
- Holy... [Legion malware expands scope to target AWS CloudWatch](https://www.scmagazine.com/news/cloud-security/legion-malware-expands-scope-to-target-aws-cloudwatch-monitoring-tool) as well.
- When it rains, it pours; Capita had an [S3 Bucket Negligence Award](https://www.verdict.co.uk/the-latest-capita-data-breach-explained/) as well!
- [Credit Card Payment Processing on AWS](https://aws.amazon.com/blogs/industries/credit-card-payment-processing-on-aws/) - Don't do it. Pay Stripe.
- [Amazon Security Lake is now generally available](https://aws.amazon.com/blogs/security/amazon-security-lake-is-now-generally-available/)
- [Announcing the AWS Blueprint for Ransomware Defense](https://aws.amazon.com/blogs/security/announcing-the-aws-blueprint-for-ransomware-defense/)
- [Get custom data into Amazon Security Lake through ingesting Azure activity logs](https://aws.amazon.com/blogs/security/get-custom-data-into-amazon-security-lake-through-ingesting-azure-activity-logs/)
- Tip of the week: When you're starting something new that might turn into a company, [use SSO](https://docs.aws.amazon.com/IAM/latest/UserGuide/id_roles_providers_saml.html) .

 View Full Transcript  Hide Full Transcript

## You might also like

[More Podcast Episodes](https://www.lastweekinaws.com/podcast/aws-morning-brief/)