Cybersecurity researchers have found that more than 2.3 billion files have been exposed across multiple online file storage platforms.
The exposed files contain both sensitive and insensitive data and can be found via SMB file shares, misconfigured network-attached storage (NAS) devices, FTP and rsync servers, and Amazon S3 buckets.
The United States is the most impacted country with over 326 million files exposed online, at great distance we can find France with 151 million files leaked and Japan with 77 million.
If we look at UE we will find that the United Kingdom has 98 million exposed files, and across entire Europe, there are more than one billion exposed files.
The main problem here is created by the fact that businesses are continuing to expand their footprint online, beyond their own networks and.
A recent cyber analysis found that the Server Message Block (SMB) protocol exposed the most data (46%) of all technologies analyzed. FTP is the next in line with 457.4 million, followed by rsync with 386.7 million, Amazon S3 with 182.1 million, webindex with 163.5 million, and NAS with 65.4 million.
For the moment cybersecurity researchers aren’t 100% sure why SMB-enabled file shares are the most impacted ones but the main reason might be that Amazon AWS Storage Gateway added SMB support în the middle of the past year.
Remember everything can be hacked. In order to stay away from any threats related to the cyber world, we recommend the install of antivirus for Windows or antivirus for Mac on every device that you own, depending on which OS your device is running. If you are a company, it is also recommended to hire every year a specialized cybersecurity company that will run annual tests on your company’s network. These tests include penetration testing and ethical hacking tests;
For those who don’t know SMB is one of the main ways, Windows users can facilitate file shares.
In the report, researchers also showed that Microsoft stopped preinstalling SMBv1 in Windows 10 and Windows Server. Amazon S3 bucket misconfigurations, which have inadvertently exposed data for years, may also be a reason for this big leak, shows the same report. ‘
This big cybersecurity flaws can lead to other devastating attacks like ransomware infections that can literally shut down entire companies or cities. The standard advice for companies is to back up their files; by doing this if they got hit and their files are encrypted, they can easily save everything.
Nowadays the most notorious ransomware appears to be NamPoHyu ransomware, which is an update from the MegaLocker.
But more than obvious, if we look back in time WannaCry is for sure the biggest ransomware variant that managed to affect almost all the cyberspace.
We would continue to monitor this cybersecurity problem. Meanwhile, users should keep a keen eye out for any cyber attacks. Remember to use an antivirus for Windows or antivirus for Mac in every device that you own, depending on which OS your machine is running, If you are a company we recommend to hire every year a specialized cybersecurity company that will run annual tests on your company’s network, tests like this include: penetration testing and ethical hacking.