Category: Markets
Published: 2026-06-22T22:07:27.000Z
This research identifies a novel "bucket hijacking" technique affecting major cloud service providers (CSPs) like Google Cloud, AWS, and partially Microsoft Azure. The technique exploits the global uniqueness of bucket names, allowing an attacker to delete an organization's bucket and recreate it under their own account with the same name, thus rerouting critical data streams. The study demonstrates widespread applicability across various services and emphasizes the need for strict permission management, data perimeter controls, and robust monitoring to mitigate this silent data exfiltration risk.
News summary curated and translated by CausifyMarket. Always consult original sources before making any financial decision.