Episode Details

🔐 Do Your Configurations Keep You Safe? 🔐

How does a major financial institution like Capital One suffer a data breach that exposes over 100 million credit applications?
In August 2019, a former Amazon employee was arrested for orchestrating a data breach that exposed over 100 million consumer credit applications at Capital One. How was AWS left vulnerable to a Server-Side Request Forgery (SSRF) attack, and how were their internal security measures misled and circumvented?
In our latest Deep Dive, host Lieuwe Jan Koning is joined by Tim Timmermans (CISO ON2IT) and Luca Cipriano (Threat Intel Specialist ON2IT) as they go through all the steps the hacker took, and what could’ve been done to prevent this data breach from happening.

Curious who was behind the hack, and how they managed to pull it off despite Capital One being compliant with numerous regulations and frameworks? Tune in to learn more and make sure you don’t fall victim to a similar attack!