AWS

The Latest

Garantex Crypto Exchange Seized, Two Charged in Laundering Scheme

Garantex Crypto Exchange Seized, Two Charged in Laundering Scheme

Over 1000 Malicious Packages Found Exploiting Open-Source Platforms

Over 1000 Malicious Packages Found Exploiting Open-Source Platforms

What Happens When Push Notifications Go Malicious? A Storm of Scams Awaits

What Happens When Push Notifications Go Malicious?

JavaGhost Uses Amazon IAM Permissions to Phish Organizations

Read More

4 minute read

Security

JavaGhost Uses Amazon IAM Permissions to Phish Organizations

Unit 42 uncovers JavaGhost’s evolving AWS attacks. Learn how this threat actor uses phishing, IAM abuse, and advanced…

March 4, 2025

FUNNULL Unmasked: AWS, Azure Abused for Global Cybercrime Operations

Read More

3 minute read

FUNNULL Unmasked: AWS, Azure Abused for Global Cybercrime Operations

Discover how cybercriminals use 'Infrastructure Laundering' to exploit AWS and Azure for scams, phishing, and money laundering. Learn about FUNNULL CDN's tactics and their global impact on businesses and cybersecurity.

January 31, 2025

New Codefinger Ransomware Abuses Amazon AWS to Encrypt S3 Buckets

Read More

3 minute read

New Codefinger Ransomware Exploits AWS to Encrypt S3 Buckets

The Halcyon RISE Team has identified a new Codefinger ransomware campaign targeting Amazon S3 buckets. This attack leverages…

January 14, 2025

FortiGuard Labs Links EC2 Grouper Hackers to AWS Credential Exploits

Read More

3 minute read

FortiGuard Labs Links New EC2 Grouper Hackers to AWS Credential Exploits

Researchers at FortiGuard Labs have identified a prolific attacker group known as "EC2 Grouper" who frequently exploits compromised credentials using AWS tools.

January 1, 2025

Hackers Use Fake PoCs on GitHub to Steal WordPress Credentials, AWS Keys

Read More

4 minute read

Hackers Use Fake PoCs on GitHub to Steal WordPress Credentials, AWS Keys

SUMMARY Datadog Security Labs’ cybersecurity researchers have discovered a new, malicious year-long campaign from a threat actor identified…

December 17, 2024

Fabrice Malware on PyPI Has Been Stealing AWS Credentials for 3 Years

Read More

4 minute read

Fabrice Malware on PyPI Has Been Stealing AWS Credentials for 3 Years

The malicious Python package “Fabrice” on PyPI mimics the “Fabric” library to steal AWS credentials, affecting thousands. Learn how…

November 7, 2024

EMERALDWHALE Steals 15,000+ Cloud Credentials, Stores Data in S3 Bucket

Read More

3 minute read

EMERALDWHALE Steals 15,000+ Cloud Credentials, Stores Data in S3 Bucket

Operation EMERALDWHALE compromises over 15,000 cloud credentials, exploiting exposed Git and Laravel files. Attackers use compromised S3 buckets…

November 1, 2024

Russian Cozy Bear Hackers Phish Critical Sectors with Microsoft, AWS Lures

Read More

3 minute read

Russian Cozy Bear Hackers Phish Critical Sectors with Microsoft, AWS Lures

Russian state-sponsored hackers Cozy Bear are targeting over 100 organizations globally with a new phishing campaign. This sophisticated…

October 30, 2024

ALBeast: Misconfiguration Flaw Exposes 15,000 AWS Load Balancers to Risk

Read More

3 minute read

Security

ALBeast: Misconfiguration Flaw Exposes 15,000 AWS Load Balancers to Risk

ALBeast is a critical vulnerability that allows attackers to bypass authentication and authorization in AWS ALB-based applications. Learn…

August 21, 2024

Black Hat USA 2024: AWS 'Bucket Monopoly' Flaw Led to Account Takeover

Read More

3 minute read

Security

Black Hat USA 2024: AWS ‘Bucket Monopoly’ Flaw Led to Account Takeover

Black Hat USA 2024 is up and running at full pace as critical AWS vulnerabilities are exposed! Learn…

August 8, 2024