[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
Date: Sun, 6 Nov 2011 18:32:33 -0500
From: Jeffrey Walton <noloader@...il.com>
To: "Ivan ." <ivanhec@...il.com>
Cc: full-disclosure <full-disclosure@...ts.grok.org.uk>
Subject: Re: Researchers Uncover 'Massive Security Flaws'
In Amazon Cloud
On Sun, Nov 6, 2011 at 6:27 PM, Ivan . <ivanhec@...il.com> wrote:
> http://www.crn.com/news/cloud/231901911/researchers-uncover-massive-security-flaws-in-amazon-cloud.htm;jsessionid=kT0u8aBKblF5Y14-kIidtA**.ecappj03
>
"We had free access to all customer data, including authentication
data, tokens, and even plain text passwords," said RUB researcher
Mario Heiderich. "It's a chain reaction. A security gap in the complex
Amazon shop always also directly causes a gap in the Amazon cloud."
Its very alarming that the passwords are stored in the plain text. It
speaks volumes to their security posture and [lack of] abilities.
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
Powered by blists - more mailing lists