Crimson Collective hackers target AWS cloud instances for data theft

The 'Crimson Collective' threat group has been targeting AWS (Amazon Web Services) cloud environments for the past weeks, to ...
CSOonline

AWS environments compromised through exposed .env files

Attackers collected Amazon Web Services keys and access tokens to various cloud services from environment variables insecurely stored in tens of thousands of web applications. A data extortion ...

Red Hat hackers Crimson Collective are now going after AWS instances

Crimson Collective, the threat actor behind the recent breach at Red Hat, is now going after Amazon Web Services (AWS) cloud ...
Security Boulevard

Aembit Connects AI and Workload Access to AWS Secrets Manager

Say goodbye to long-lived personal access tokens as you replace them with ephemeral, policy-driven credentials and automated ...

AWS misconfigurations reportedly used to launch phishing attacks

Threat actors seen abusing AWS misconfigurations to gain access to the instances They would use the instances to create new ...
ZDNet

New tool detects AWS intrusions where hackers abuse self-replicating tokens

Security firm CyberArk has released a new tool called SkyWrapper that can detect a certain class of intrusions and malicious activity inside AWS (Amazon Web Services) computing environments. These ...