AWS

The Latest

New ValleyRAT Malware Variant Spreading via Fake Chrome Downloads

New ValleyRAT Malware Variant Spreading via Fake Chrome Downloads

SpyCloud Pioneers the Shift to Holistic Identity Threat Protection

N. Korean ‘FlexibleFerret’ Malware Hits macOS with Fake Zoom and Job Scams

N. Korean ‘FlexibleFerret’ Malware Hits macOS with Fake Zoom, Job Scams

Hackers Hide Malware in Fake DeepSeek PyPI Packages

Hackers Hide Malware in Fake DeepSeek PyPI Packages

FUNNULL Unmasked: AWS, Azure Abused for Global Cybercrime Operations

Read More

3 minute read

FUNNULL Unmasked: AWS, Azure Abused for Global Cybercrime Operations

Discover how cybercriminals use 'Infrastructure Laundering' to exploit AWS and Azure for scams, phishing, and money laundering. Learn about FUNNULL CDN's tactics and their global impact on businesses and cybersecurity.

January 31, 2025

New Codefinger Ransomware Abuses Amazon AWS to Encrypt S3 Buckets

Read More

3 minute read

New Codefinger Ransomware Exploits AWS to Encrypt S3 Buckets

The Halcyon RISE Team has identified a new Codefinger ransomware campaign targeting Amazon S3 buckets. This attack leverages…

January 14, 2025

FortiGuard Labs Links EC2 Grouper Hackers to AWS Credential Exploits

Read More

3 minute read

FortiGuard Labs Links New EC2 Grouper Hackers to AWS Credential Exploits

Researchers at FortiGuard Labs have identified a prolific attacker group known as "EC2 Grouper" who frequently exploits compromised credentials using AWS tools.

January 1, 2025

Hackers Use Fake PoCs on GitHub to Steal WordPress Credentials, AWS Keys

Read More

4 minute read

Hackers Use Fake PoCs on GitHub to Steal WordPress Credentials, AWS Keys

SUMMARY Datadog Security Labs’ cybersecurity researchers have discovered a new, malicious year-long campaign from a threat actor identified…

December 17, 2024

Fabrice Malware on PyPI Has Been Stealing AWS Credentials for 3 Years

Read More

4 minute read

Fabrice Malware on PyPI Has Been Stealing AWS Credentials for 3 Years

The malicious Python package “Fabrice” on PyPI mimics the “Fabric” library to steal AWS credentials, affecting thousands. Learn how…

November 7, 2024

EMERALDWHALE Steals 15,000+ Cloud Credentials, Stores Data in S3 Bucket

Read More

3 minute read

EMERALDWHALE Steals 15,000+ Cloud Credentials, Stores Data in S3 Bucket

Operation EMERALDWHALE compromises over 15,000 cloud credentials, exploiting exposed Git and Laravel files. Attackers use compromised S3 buckets…

November 1, 2024

Russian Cozy Bear Hackers Phish Critical Sectors with Microsoft, AWS Lures

Read More

3 minute read

Russian Cozy Bear Hackers Phish Critical Sectors with Microsoft, AWS Lures

Russian state-sponsored hackers Cozy Bear are targeting over 100 organizations globally with a new phishing campaign. This sophisticated…

October 30, 2024

ALBeast: Misconfiguration Flaw Exposes 15,000 AWS Load Balancers to Risk

Read More

3 minute read

Security

ALBeast: Misconfiguration Flaw Exposes 15,000 AWS Load Balancers to Risk

ALBeast is a critical vulnerability that allows attackers to bypass authentication and authorization in AWS ALB-based applications. Learn…

August 21, 2024

Black Hat USA 2024: AWS 'Bucket Monopoly' Flaw Led to Account Takeover

Read More

3 minute read

Security

Black Hat USA 2024: AWS ‘Bucket Monopoly’ Flaw Led to Account Takeover

Black Hat USA 2024 is up and running at full pace as critical AWS vulnerabilities are exposed! Learn…

August 8, 2024

In the jungle of AWS S3 Enumeration

Read More

4 minute read

Security

In the jungle of AWS S3 Enumeration

Amazon Web Services (AWS) Simple Storage Service (S3) is a foundational pillar of cloud storage, offering scalable object…

byDaily Contributors

May 31, 2024