%20(3)-1.png?quality=high&width=1900&height=1250&name=CSS%20-%20Blog%20(Featured%20Images)%20(3)-1.png)
%20(1).png?width=2000&height=1125&name=CSS%20-%20Blog%20(Featured%20Images)%20(1).png)
Public S3 Bucket Exposure: Misconfiguration Risks in 2025
Casmer Labs, the threat research team within Cloud Storage Security, continues to observe cases in 2025 where sensitive data is exposed through publicly accessible cloud storage. In these cases, exposure typically comes from configuration, not intrusion. A storage resource such as an Amazon S3 bucket is left open to the internet and contains real customer data, financial records, or other regulated information.
%20(1920%20x%201080%20px)%20(15).png)
%20(1920%20x%201080%20px)%20(8).png?width=387&height=258&name=Copy%20of%20Blue%20White%20Gradient%20Modern%20Professional%20Business%20General%20LinkedIn%20Banner%20(750%20x%20750%20px)%20(1920%20x%201080%20px)%20(8).png)
Aug 13, 2025
FTX Japan Breach Exposes 26M Records via Amazon S3 Error
By late 2024 the public cloud had become the default platform for building and running new applications, business workflows, and data processing pipelines. Cloud adoption continued to accelerate through 2025. Industry forecasts place overall cloud spend in the hundreds of billions of dollars by the end of 2025. Analysts also estimate that more than one hundred zettabytes of data will reside in cloud infrastructure by the end of 2025, representing a significant portion of global digital data. As more workloads move, more data follows. Customer records, payment history, internal analytics output, compliance evidence, audit logs, and operational reports are all copied into cloud storage. That data does not live in a single place. It is replicated across object storage, snapshots, file systems, analytics buckets, and backup archives in multiple regions and accounts. Every storage location, for example an Amazon S3 bucket, an Azure Blob container, or a Google Cloud Storage bucket, has dozens of configuration options. A single misconfiguration can make internal data publicly reachable without any exploit.
Casmer Labs%20(1920%20x%201080%20px)%20(7).png?width=387&height=258&name=Copy%20of%20Blue%20White%20Gradient%20Modern%20Professional%20Business%20General%20LinkedIn%20Banner%20(750%20x%20750%20px)%20(1920%20x%201080%20px)%20(7).png)
Aug 7, 2025
Preventing Internal and External Data Breaches with DataDefender
In the first half of 2025 Casmer Labs, Cloud Storage Security's internal threat research team, observed a steady increase in high impact data exposure and data theft incidents driven by insider activity, compromised access, and the lack of proactive activity monitoring.
Cloud Storage Security%20(1920%20x%201080%20px)%20(6).png?width=387&height=258&name=Copy%20of%20Blue%20White%20Gradient%20Modern%20Professional%20Business%20General%20LinkedIn%20Banner%20(750%20x%20750%20px)%20(1920%20x%201080%20px)%20(6).png)
Jul 30, 2025
Threat Report - July 2025
Casmer Labs, Cloud Storage Security’s (CSS) internal threat laboratory, monitors the dynamic landscape of cybersecurity, cloud security, and particularly cloud data security. Our mission is to ensure that our customers and the public are informed about critical security developments, incidents, and updates.
Cloud Storage Security%20(1920%20x%201080%20px)%20(3).png?width=387&height=258&name=Copy%20of%20Blue%20White%20Gradient%20Modern%20Professional%20Business%20General%20LinkedIn%20Banner%20(750%20x%20750%20px)%20(1920%20x%201080%20px)%20(3).png)
Jul 3, 2025
Columbia University Expose 460GB of Sensitive Records in Targeted Hack
Casmer Labs, Cloud Storage Security’s (CSS) internal threat research laboratory, closely monitors breaches and threats impacting cloud environments and particularly the data contained within. In this report, we analyze the June 2025 cyberattack on Columbia University —a significant breach against a higher education institution in terms of scope, impact, and complexity.
Casmer Labs%20(1920%20x%201080%20px)%20(2).png?width=387&height=258&name=Copy%20of%20Blue%20White%20Gradient%20Modern%20Professional%20Business%20General%20LinkedIn%20Banner%20(750%20x%20750%20px)%20(1920%20x%201080%20px)%20(2).png)
Jul 2, 2025
June Threat Report: INTERPOL Attacks Infostealers
Casmer Labs, Cloud Storage Security’s (CSS) internal threat laboratory, monitors the dynamic landscape of cybersecurity, cloud security, and particularly cloud data security. Our mission is to ensure that our customers and the public are informed about critical security developments, incidents, and updates.
Casmer Labs%20(1920%20x%201080%20px)%20(1).png?width=387&height=258&name=Copy%20of%20Blue%20White%20Gradient%20Modern%20Professional%20Business%20General%20LinkedIn%20Banner%20(750%20x%20750%20px)%20(1920%20x%201080%20px)%20(1).png)
Jul 1, 2025
Secure Amazon S3 with Advanced Access Control and Antivirus Scanning
The typical enterprise organization stores high volumes of data in cloud storage services such as Amazon S3– with much of this data being sensitive or otherwise business critical in nature. Particularly for organizations who leverage data lakes built on Amazon S3, the sheer volume of data housed within one (or a few) individual storage resources is staggering. Scaling cloud infrastructure requires implementing proper access controls and comprehensive malware protection. These measures limit exposure to bad actors and unintended user mistakes, protecting against data breaches, system disruptions, and financial losses. Implementing these controls secures the cloud and helps achieve certifications like ISO 27001. Cloud Storage Security Antivirus for Amazon S3 enhances Amazon S3's native features, offering advanced antivirus scanning and malware protection.
Casmer Labs%20(1920%20x%201080%20px)-1.png?width=387&height=258&name=Copy%20of%20Blue%20White%20Gradient%20Modern%20Professional%20Business%20General%20LinkedIn%20Banner%20(750%20x%20750%20px)%20(1920%20x%201080%20px)-1.png)
Jun 30, 2025
Managing Misconfigurations at Scale With DataDefender
Modern enterprises understand that their data stores are ever-growing– and becoming more distributed through more IT systems, accounts, resources, and more. An enterprise with hundreds of cloud accounts and thousands of buckets and volumes would have been a statistical anomaly 10 years ago. In 2025, cloud usage at this scale is commonplace.
Casmer Labs%20(1920%20x%201080%20px)%20(1).png?width=387&height=258&name=Blue%20White%20Gradient%20Modern%20Professional%20Business%20General%20LinkedIn%20Banner%20(750%20x%20750%20px)%20(1920%20x%201080%20px)%20(1).png)
Jun 30, 2025
Introducing DataDefender by Cloud Storage Security
Award-winning cloud security solution provider Cloud Storage Security (CSS) has announced the general availability of DataDefender, a security platform built to help organizations secure their most important assets—their data. Having built the award-winning malware protection solution Antivirus for Amazon S3, currently the #1 most subscribed container listing in AWS Marketplace, DataDefender is the result of CSS’ expertise in cloud security at the storage layer and the commitment to helping customers prevent breaches before they happen.
Casmer Labs%20(7).png?width=387&height=258&name=CSS%20Webinar%20Thumbnails%20(750%20x%20750%20px)%20(7).png)
Jun 26, 2025
Strengthen Amazon S3 Security with Advanced Controls & Antivirus
The typical enterprise organization stores high volumes of data in cloud storage services such as Amazon S3– with much of this data being sensitive or otherwise business critical in nature. Particularly for organizations who leverage data lakes built on Amazon S3, the sheer volume of data housed within one (or a few) individual storage resources is staggering. Scaling cloud infrastructure requires implementing proper access controls and comprehensive malware protection. These measures limit exposure to bad actors and unintended user mistakes, protecting against data breaches, system disruptions, and financial losses. Implementing these controls secures the cloud and helps achieve certifications like ISO 27001. Cloud Storage Security Antivirus for Amazon S3 enhances Amazon S3's native features, offering advanced antivirus scanning and malware protection.
Casmer Labs
