AWS

The Latest

Backdoor Found in Official XRP Ledger NPM Package

Backdoor Found in Official XRP Ledger NPM Package

Blue Shield Leaked Millions of Patient Info to Google for Years

Blue Shield Leaked Millions of Patient Info to Google for Years

dRPC Launches NodeHaus to Streamline Blockchain and Web3 Infrastructure

dRPC Launches NodeHaus to Streamline Blockchain and Web3 Infrastructure

New SessionShark Phishing Kit Steals Session Tokens to Bypass Office 365 MFA

New SessionShark Phishing Kit Bypasses MFA to Steal Office 365 Logins

Mass Ransomware Campaign Hits S3 Buckets Using Stolen AWS Keys

Read More

2 minute read

Mass Ransomware Campaign Hits S3 Buckets Using Stolen AWS Keys

Researchers reveal a large-scale ransomware campaign leveraging over 1,200 stolen AWS access keys to encrypt S3 buckets. Learn…

April 17, 2025

JavaGhost Uses Amazon IAM Permissions to Phish Organizations

Read More

4 minute read

Security

JavaGhost Uses Amazon IAM Permissions to Phish Organizations

Unit 42 uncovers JavaGhost’s evolving AWS attacks. Learn how this threat actor uses phishing, IAM abuse, and advanced…

March 4, 2025

FUNNULL Unmasked: AWS, Azure Abused for Global Cybercrime Operations

Read More

3 minute read

FUNNULL Unmasked: AWS, Azure Abused for Global Cybercrime Operations

Discover how cybercriminals use 'Infrastructure Laundering' to exploit AWS and Azure for scams, phishing, and money laundering. Learn about FUNNULL CDN's tactics and their global impact on businesses and cybersecurity.

January 31, 2025

New Codefinger Ransomware Abuses Amazon AWS to Encrypt S3 Buckets

Read More

3 minute read

New Codefinger Ransomware Exploits AWS to Encrypt S3 Buckets

The Halcyon RISE Team has identified a new Codefinger ransomware campaign targeting Amazon S3 buckets. This attack leverages…

January 14, 2025

FortiGuard Labs Links EC2 Grouper Hackers to AWS Credential Exploits

Read More

3 minute read

FortiGuard Labs Links New EC2 Grouper Hackers to AWS Credential Exploits

Researchers at FortiGuard Labs have identified a prolific attacker group known as "EC2 Grouper" who frequently exploits compromised credentials using AWS tools.

January 1, 2025

Hackers Use Fake PoCs on GitHub to Steal WordPress Credentials, AWS Keys

Read More

4 minute read

Hackers Use Fake PoCs on GitHub to Steal WordPress Credentials, AWS Keys

SUMMARY Datadog Security Labs’ cybersecurity researchers have discovered a new, malicious year-long campaign from a threat actor identified…

December 17, 2024

Fabrice Malware on PyPI Has Been Stealing AWS Credentials for 3 Years

Read More

4 minute read

Fabrice Malware on PyPI Has Been Stealing AWS Credentials for 3 Years

The malicious Python package “Fabrice” on PyPI mimics the “Fabric” library to steal AWS credentials, affecting thousands. Learn how…

November 7, 2024

EMERALDWHALE Steals 15,000+ Cloud Credentials, Stores Data in S3 Bucket

Read More

3 minute read

EMERALDWHALE Steals 15,000+ Cloud Credentials, Stores Data in S3 Bucket

Operation EMERALDWHALE compromises over 15,000 cloud credentials, exploiting exposed Git and Laravel files. Attackers use compromised S3 buckets…

November 1, 2024

Russian Cozy Bear Hackers Phish Critical Sectors with Microsoft, AWS Lures

Read More

3 minute read

Russian Cozy Bear Hackers Phish Critical Sectors with Microsoft, AWS Lures

Russian state-sponsored hackers Cozy Bear are targeting over 100 organizations globally with a new phishing campaign. This sophisticated…

October 30, 2024

ALBeast: Misconfiguration Flaw Exposes 15,000 AWS Load Balancers to Risk

Read More

3 minute read

Security

ALBeast: Misconfiguration Flaw Exposes 15,000 AWS Load Balancers to Risk

ALBeast is a critical vulnerability that allows attackers to bypass authentication and authorization in AWS ALB-based applications. Learn…

August 21, 2024