ZDNet

A crypto-mining botnet is now stealing Docker and AWS credentials

Analysts from security firm Trend Micro said in a report today that they've spotted a malware botnet that collects and steals Docker and AWS credentials. Cyber attacks and malware are one of the ...
Yahoo

AWS customers hit by major cyberattack which then stored stolen credentials in plain sight

Misconfigured cloud instances have once again been abused to steal sensitive information such as login credentials, API keys, and more. This time around, the victims were countless Amazon Web Services ...
SiliconANGLE

AWS IAM credentials at risk: EleKtra-Leak operation revealed by Unit 42

A new report from Palo Alto Networks Inc.’s Unit 42 warns of a new active campaign targeting exposed Amazon Web Services Inc. identity and access management credentials within public GitHub ...
InfoQ

Amazon Launches AWS Secrets Manager to Securely Store, Distribute, and Rotate Credentials

A monthly overview of things you need to know as an architect or aspiring architect. Unlock the full InfoQ experience by logging in! Stay updated with your favorite authors and topics, engage with ...
Dark Reading

'TruffleNet' Attack Wields Stolen Credentials Against AWS

which is used to test whether stolen credentials were valid. The malicious infrastructure also had a component that leverages the AWS control line interface (CLI) to query the "GetSendQuota" API for ...
ZDNet

Misconfigured, old Airflow instances leak Slack, AWS credentials

On Monday, Intezer malware analyst Nicole Fishbein and cybersecurity researcher Ryan Robinson said the instances, vulnerable to data theft, belong to industries including IT, cybersecurity, health, ...
Hosted on MSN

AWS customers hit by major cyberattack which then stored stolen credentials in plain sight

Researchers find vulnerabilities in public sites that exposed sensitive information They later discovered a campaign using the flaws to exfiltrate data from "millions of websites" The crooks were ...