AWS patched the logging. Your data already left.
Varonis found that anonymous S3 requests via VPC endpoints were invisible to CloudTrail. AWS added logging. But logging is reactive — by the time you see the entry, the attacker's upload is complete. The endpoint policies that allow the attack are still wide open. In April 2026, Varonis Threat Labs
ORIGINAL SOURCE →via Dev.to
ADVERTISEMENT
⚡ STAY AHEAD
Events like this, convergence-verified across 689 sources, land in your inbox every Sunday. Free.
GET THE SUNDAY BRIEFING →RELATED · cyber
- [CYBER] 🔒 worldleaks: Equatorial Coca-Cola Bottling
- [CYBER] TradFi tokenization has single points of failure. DeFi hack shows why that matters - ledgerinsights.com
- [CYBER] UK Pledges £90m for Cybersecurity and Pushes for ‘Resilience Pledge’
- [CYBER] UK government says 100 countries have spyware that can hack people’s phones
- [CYBER] 'Felony murder law does not require that a defendant pull the trigger': Ex-FBI chief calls for ransomware attackers to face homicide charges if attacks lead to deaths
- [CYBER] DeFi Security Suffers New Blow With $3 Million Volo Exploit - PYMNTS.com