Earlier this month we started working on a little side project after being notified of an interesting conversation on Twitter. The basic concept was using Amazon AWS S3 buckets as honey pots, which would identify when someone is doing reconnaissance against your brand or infrastructure. This seemed like quite a fun and novel idea we could turnaround in a short space of time, so we started fleshing it out.
At Breach Insider, we see a similar story over and over again via social media and other outlets, with folks suggesting various companies may have suffered a breach due to their accounts becoming compromised, or receiving spam:
@Shudder_UK think you might have either sold my email address on or had some sort of data breach, DM me for details.— James Cavendish (@Cavensoft) November 15, 2017