two days ago a #s3 bucket containing a SQL dump with data from #volkswagen #financial #services was deleted. I reported the bucket on the 9th of March, so it took them close to three weeks to fix it.
My mail with the responsible disclosure to #vw was never answered or acknowledged.

In a very strange turn of events, I've randomly stumbled across a misconfigured #S3 Bucket. I have no idea who owns it, or how sensative the contents might be. Does anyone have any suggestions on how to go about the responsible disclosure process here? Do I contact amazon Web Services perhaps? Boosts for reach would be greatly appreciated.