Internal Error in Cloud Service Exposes Dow Jones Data

Internal Error in Cloud Service Exposes Dow Jones Data

Last Sunday, financial and business news firm Dow Jones announced exposure of information from an estimated 2.2 million customers on Amazon Cloud due to an internal error in S3 bucket organization.

The company said that the unprotected content involved subscriber, risk, and compliance data involving Dow Jones and Wall Street Journal. This compromised customer information in Amazon cloud, including emails, mailing addresses, customer’s names, and the final four numbers of customer credit cards.

The incident was identified by UpGuard cyber security researcher Chris Vickery last May 31. They were able to inform Dow Jones about the data exposure on June 5, with the bucket being contained by the following day.

In a statement, Dow Jones claims they believe none of the exposed information was taken by other parties. The data only included minor contact details, as opposed to passwords and complete credit card codes.

Source: GovInfoSecurity

Disini & Disini Law Office