From cat videos to credit cards, Amazon says customers have to secure own data

By Jack Stubbs LISBON (Reuters) - Amazon's cloud computing customers have to decide themselves how best to protect sensitive information online, a senior executive said on Tuesday, following accusations by U.S. lawmakers that the web giant has not done enough to secure data on its servers. Amazon Web Services (AWS), the cloud computing arm of Amazon.com , has come under fire following a series of high-profile data breaches, including one this year involving the personal information of 106 million people stored on its servers by Capital One Financial Corp .

Reuters November 06, 2019 00:06:16 IST
From cat videos to credit cards, Amazon says customers have to secure own data

From cat videos to credit cards Amazon says customers have to secure own data

By Jack Stubbs

LISBON (Reuters) - Amazon's cloud computing customers have to decide themselves how best to protect sensitive information online, a senior executive said on Tuesday, following accusations by U.S. lawmakers that the web giant has not done enough to secure data on its servers.

Amazon Web Services (AWS), the cloud computing arm of Amazon.com , has come under fire following a series of high-profile data breaches, including one this year involving the personal information of 106 million people stored on its servers by Capital One Financial Corp .

Chief Technology Officer Werner Vogels said AWS provided multiple services to help customers identify if their data was being stored appropriately and flag any possible problems, but the decision about which settings to use lay with those clients.

"We feel we have a responsibility in making sure you take the right actions, but in the end it's only you who can decide what is the right action there and what's not," he told Reuters on the sidelines of the Web Summit tech conference in Lisbon.

"I'm not going to look at your data thinking like 'hey, these are cat videos, maybe you shouldn't do that'." He added that customers should use tighter security controls for sensitive data such as credit card information.

Cybersecurity researchers say data hosted on AWS servers is often accidentally exposed due to mistakes made by the company's clients configuring their security settings.

The alleged Capital One hacker, for example, was able to access the firm's data due to a wrongly-configured web application firewall, U.S. prosecutors have said.

Analysts at Gartner predict client mistakes will account for 99 percent of "cloud security failures" over the next six years.

Vogels said the AWS system warned customers with a "massive red button" when they configured online storage containers - known as buckets - to be accessible by anyone online, a setting deliberately chosen for some products and applications.

The company also provides tools which clients can run to analyse the type of data they are storing and spot commonly associated slip-ups, he said.

"If you (change) the configuration on your bucket to world-readable, you will get lots of alarm bells going off," he said. "It's up to the individual customer to decide what's right and what's wrong."

(Reporting by Jack Stubbs; Editing by Pravin Char)

This story has not been edited by Firstpost staff and is generated by auto-feed.

Updated Date:

TAGS:

also read

France, Germany to agree to NATO role against Islamic State - sources
| Reuters
World

France, Germany to agree to NATO role against Islamic State - sources | Reuters

By Robin Emmott and John Irish | BRUSSELS/PARIS BRUSSELS/PARIS France and Germany will agree to a U.S. plan for NATO to take a bigger role in the fight against Islamic militants at a meeting with President Donald Trump on Thursday, but insist the move is purely symbolic, four senior European diplomats said.The decision to allow the North Atlantic Treaty Organization to join the coalition against Islamic State in Syria and Iraq follows weeks of pressure on the two allies, who are wary of NATO confronting Russia in Syria and of alienating Arab countries who see NATO as pushing a pro-Western agenda."NATO as an institution will join the coalition," said one senior diplomat involved in the discussions. "The question is whether this just a symbolic gesture to the United States

China's Xi says navy should become world class
| Reuters
World

China's Xi says navy should become world class | Reuters

BEIJING Chinese President Xi Jinping on Wednesday called for greater efforts to make the country's navy a world class one, strong in operations on, below and above the surface, as it steps up its ability to project power far from its shores.China's navy has taken an increasingly prominent role in recent months, with a rising star admiral taking command, its first aircraft carrier sailing around self-ruled Taiwan and a new aircraft carrier launched last month.With President Donald Trump promising a US shipbuilding spree and unnerving Beijing with his unpredictable approach on hot button issues including Taiwan and the South and East China Seas, China is pushing to narrow the gap with the U.S. Navy.Inspecting navy headquarters, Xi said the navy should "aim for the top ranks in the world", the Defence Ministry said in a statement about his visit."Building a strong and modern navy is an important mark of a top ranking global military," the ministry paraphrased Xi as saying.