writeups.xyz / Abusing the Replicator: Silently Exfiltrating Data with the AWS S3 Replication Service

Submitter : c2a

Date: 20 July 2022

Bounty : undisclosed

Vulnerabilities :

• Security Logging and Monitoring Failure

Programs :

• AWS

Authors :

• Kat Traxler (@NightmareJS)

Link :
https://www.vectra.ai/blogpost/abusing-the-replicator-silently-exfiltrating-data-with-the-aws-s3-replication-service