CRN

AWS’ EKS Kubernetes ‘Critical Security’ Flaw Exposes Credentials, Says Trend Micro

AWS said in a statement to CRN that it completed an investigation into the security flaw and determined that it ‘is not a security issue, but rather expected behavior that falls within the trust ...
TechRadar

AWS customers hit by major cyberattack which then stored stolen credentials in plain sight

Researchers discover campaign to scan for exposed data from "millions of websites" The crooks were selling the data on the dark web for "hundreds of euros" AWS says it has now fixed the issue, but ...
CSOonline

AWS environments compromised through exposed .env files

Attackers collected Amazon Web Services keys and access tokens to various cloud services from environment variables insecurely stored in tens of thousands of web applications. A data extortion ...
TechRadar

Red Hat hackers Crimson Collective are now going after AWS instances

Crimson Collective hackers target AWS using exposed credentials to escalate privileges and exfiltrate data Attackers use TruffleHog to find secrets, then create IAM users and access keys via API Red ...