Cut Cord: How Viacom’s Master Controls Were Left Exposed

An Amazon Web Services S3 cloud storage bucket belonging to Viacom was left publicly accessible, according to the UpGuard Cyber Risk Team. The repository appeared to contain either the primary or backup configuration of Viacom’s infrastructure, including passwords and manifests for the company’s servers, as well as Viacom’s access key and secret key for its AWS account. The intrinsic value of the leak is described as “super admin level”, despite being apparently trivial in size.