2 March, 2018
50 GB Of Data Left Exposed On Amazon S3 Bucket By Analytics Firm Birst
Configuration data was placed in an unsecured Amazon S3 bucket by the business analytics software firm Birst, according to security researchers at UpGuard. On January 15th, UpGuard detected the unsecured bucket—which contained IP addresses, administrative credentials, passwords, and private keys. Birst secured the bucket the same day, after receiving notification from Chris Vickery, UpGuard’s director of cyber risk research.
The bucket, which was 50.4 GB in size, did not contain any customer information. The information contained in the bucket relates to a Birst appliance. According to the leak description by UpGuard: