Attackers are encrypting AWS S3 data without using ransomware - Help Net Security

Codefinger, a ransomware gang, is encrypting data in AWS S3 buckets using SSE-C, forcing organizations to pay for the decryption key. To prevent this attack, organizations should restrict SSE-C application, regularly review AWS key permissions, and enable detailed S3 logging.