Identity and Access Misstep: How an Amazon Engineer Exposed Credentials and More

Sensitive information from an Amazon Web Services (AWS) engineer was briefly exposed on GitHub before being secured by cybersecurity firm UpGuard. Discovered on 13 January, the repository stored identity documents, system credentials, passwords and other data. UpGuard’s cybersecurity analysts noticed and identified the data leak within half an hour, immediately notifying AWS security. The breach was sealed on the same day.