mailing list archives
Re: Researchers Uncover 'Massive Security Flaws' In Amazon Cloud
From: Jeffrey Walton <noloader () gmail com>
Date: Sun, 6 Nov 2011 18:32:33 -0500
On Sun, Nov 6, 2011 at 6:27 PM, Ivan . <ivanhec () gmail com> wrote:
"We had free access to all customer data, including authentication
data, tokens, and even plain text passwords," said RUB researcher
Mario Heiderich. "It's a chain reaction. A security gap in the complex
Amazon shop always also directly causes a gap in the Amazon cloud."
Its very alarming that the passwords are stored in the plain text. It
speaks volumes to their security posture and [lack of] abilities.
Full-Disclosure - We believe in it.
Hosted and sponsored by Secunia - http://secunia.com/