- We created a database snapshot to test the system.
- A compute instance we created internally was accessible from the outside and contained an AWS API key.
- This compute instance was compromised, and the AWS API Key was stolen
- To access the snapshot, you needed to use the AWS API key
According to the company, there was no evidence of malicious activity in relation to the 2017 loss of customer data. Imperva also listed six corrective steps it was taking in order to improve security. AWS was hit hard by the incident. AWS had been dealing with years of data breaches. These were mainly due to customers not taking proper precautions to protect their data, rather than inherent flaws in AWS’ cloud platform. AWS has provided constant guidance to customers to ensure that they follow the best security practices to prevent such breaches.