Imperva blames data breach on stolen AWS API key

From zdnet.com

Imperva

Cyber-security firm Imperva published today a detailed post-mortem report of a security breach the company disclosed two months ago, in August.

The company blamed the security breach on an Amazon Web Services (AWS) API key a hacker stole from an internal system that was left accessible from the internet.

The post-mortem is a little bit convoluted, but we summarized the series of events that led to the Imperva breach in the list below:

Read more…