AWS has released a new version of the metadata service that will better secure
instance metadata against attackers. In this post, I will discuss the risk of hackers
gaining access to the instance metadata service and how the latest update mitigates the risk.
Previously I discussed how to prevent a security incident similar to the one that occurred at Capital One earlier this year. In this post,I will expound further on what went wrong there from a data protection perspective and make recommendations on how to protect your data hosted in S3.
This week a massive data breach at Capital One was announced. In this
case, an internal actor was able to presumably use insider information to gain access to data stored in S3. In this article I will examine this data breach and provide best practices to prevent this from happening to your organization.