Simulated Attack Reveals DPRK’s Largest Cryptocurrency Heist via Compromised macOS Developer and AWS Exploits
A meticulously orchestrated cyber intrusion led to the theft of approximately 400,000 ETH from ByBit, marking it as one of the largest cryptocurrency heists...
AWS Defaults Unknowingly Expose Attack Vectors for Privilege Escalation and Account Compromise
AWS service roles' default configuration includes serious flaws that have been discovered by recent security research.
These flaws show how default permissions can increase...
LLMjacking Attack Hijack Cloud LLMs By Abuse GenAI with AWS NHIs
In a groundbreaking revelation, cybersecurity experts have identified a new attack vector termed "LLMjacking," wherein malicious actors exploit non-human identities (NHIs) to hijack access...
Chinese CDN Abusing AWS & Microsoft Cloud for Hosting Malicious Websites
A recent investigation by cybersecurity firm Silent Push has uncovered a troubling trend in cybercrime: the exploitation of mainstream cloud providers like Amazon Web...
Hackers Abusing AWS & Microsoft Azure in large-scale to Launch Cyber Attacks
Silent Push, a cybersecurity research firm, has unveiled a concerning trend they term "infrastructure laundering," where threat actors exploit mainstream cloud providers such as...
