Tech

AWS customers hit by major cyberattack which then stored stolen credentials in plain sight

Share
Share


  • Researchers find vulnerabilities in public sites that exposed sensitive information
  • They later discovered a campaign using the flaws to exfiltrate data from “millions of websites”
  • The crooks were selling the data on the dark web for “hundreds of euros”

Misconfigured cloud instances have once again been abused to steal sensitive information such as login credentials, API keys, and more.

This time around, the victims were countless Amazon Web Services (AWS) customers who don’t seem to understand the shared responsibility model of cloud infrastructure.

Share

Leave a comment

Leave a Reply

Your email address will not be published. Required fields are marked *

Related Articles
Elon Musk says has no plans to acquire TikTok’s US operations
Tech

Elon Musk says has no plans to acquire TikTok’s US operations

US President Donald Trump has said he would be open to Musk...

PlayStation Network back online after 24-hour outage
Tech

PlayStation Network back online after 24-hour outage

A member of the media tries out Sony’s PlayStation 5 console during...

Musk risks putting EU buyers off Tesla: analysts
Tech

Musk risks putting EU buyers off Tesla: analysts

The backlash against Tesla has been particularly strong in Germany, where Elon...