- AWS will scan the public IP space for firewall resources of customers to determine if they are misconfigured.
- AWS will intensify its efforts to assist customers in setting the most permissive permissions.
- AWS will work harder to make its Macie- and GuardDuty anomaly detection service more widely adopted and accessible in all regions.
Schmidt stated that additional “belts and suspenders” will be added to subsystems within our stack (like instance metadata service) in order to provide customers with even greater protection. “Security will continue to evolve at an accelerated pace and we will certainly find other areas that we can improve going forward.” Schmidt said. You can be sure that we will continue to improve our services and learn from this incident with our partner. Capital One estimates that the breach affected approximately 100 million people in the U.S., and 6 million in Canada. More information about the incident was provided by Capital One here and here. AWS stated that its cloud platform was unaffected by the incident and continued to function as intended.