The National Geospatial-Intelligence Agency (NGA) retained over 60,000 classified documents from a US military project on an Amazon cloud storage server that were not authenticated, according to well-known security researcher Chris Vickery.
One of the country's top defence contractors for intelligence reportedly left the data unattended on a public Amazon server.
Passwords for a US government system holding private data and the security credentials of a senior worker at the largest defence contractor, Booz Allen Hamilton, are contained in the files.
That the archive is the most troubling aspect of the finding Master credentials that allowed for administrative access to a highly secure Pentagon system were also present in the released data.
Source: https://securityaffairs.com/59615/data-breach/defense-contractor-data-leak.html
"id": "NAT199211123",
"linkid": "nga",
"type": "Data Leak",
"date": "06/2017",
"severity": "85",
"impact": "3",
"explanation": "Attack with significant impact with internal employee data leaks"