AWSDoor Persistence Technique Lets Attackers Hide Inside AWS Environments
Attackers have long exploited identity and access management misconfigurations in AWS, but a new open-source tool called AWSDoor is raising the stakes by automating...
Hackers Exploit AWS Lambda URL Endpoints to Target Government Organizations
Researchers from Unit 42 at Palo Alto Networks have been monitoring a complex cluster of malicious behavior known as CL-STA-1020 since late 2024. This...
AWS Organizations Policy Misconfiguration Let Hackers Gain Full Control of Cloud Environment
A severe weakness in AWS Organizations' delegation procedures was discovered in a groundbreaking revelation by Cymulate Research Labs, which has users of Amazon's multi-account...
Hackers Infiltrate PyPI Repositories with Weaponized Packages to Steal AWS Tokens and Sensitive Data
Open-source software repositories such as the Python Package Index (PyPI) are integral to modern software development, enabling developers worldwide to seamlessly integrate third-party libraries...
Critical AWS Amplify Studio Vulnerability Enables Remote Code Execution – PoC Now Public
A critical security vulnerability has been disclosed in AWS Amplify Studio's UI generation framework, with researchers releasing a proof-of-concept exploit demonstrating remote code execution...
