Dossier
Fog Security
Coverage of Fog Security in the Nexus archive.
- AWS to Quick admins: The access control didn't work, but you weren't using it anyway, so what's the problem?
AWS responded to a security vulnerability in Amazon Quick, claiming no customer data was at risk after Fog Security disclosed an authorization bypass, which allowed access to AI Chat Agents despite explicit denial of access. The issue was fixed between March 11 and 12. AWS classified the severity as 'none' and issued no customer notification. The vulnerability was reported via HackerOne, a bug bounty platform.