The Information Highway

The Information Highway

Amazon Web Services

Malicious PyPI Package 'Fabrice' Found Stealing AWS Keys from Thousands of Developers

Thursday, 07 November 2024

Ravie Lakshmanan

Security News

aw_20241109-185929_1

Cybersecurity researchers have discovered a malicious package on the Python Package Index (PyPI) that has racked up thousands of downloads for over three years while stealthily exfiltrating developers' Amazon Web Services (AWS) credentials.

Continue reading

55 Hits

0 Comments

Tags:

Cybersecurity researchers package Python Package Index exfiltrating developers Amazon Web Services

Amazon's AWS SSM agent can be used as post-exploitation RAT malware

Wednesday, 02 August 2023

Security Cloud Computing

hacker-looking-at-screens

Researchers have discovered a new post-exploitation technique in Amazon Web Services (AWS) that allows hackers to use the platform's System Manager (SSM) agent as an undetectable Remote Access Trojan (RAT).

Continue reading

990 Hits

0 Comments

Tags:

agent SSM System Manager Amazon Web Services post-exploitation technique

Blog Categories
Security 457 post(s) News 311 post(s) Technology 155 post(s) Compliance 29 post(s) Cloud Computing 10 post(s) Uncategorized 1 post(s) Business Continuity & Disaster Recovery 1 post(s)

You May Also Like

Cyberattack on IT provider CTS impacts dozens of UK law firms

A cyberattack on CTS, a leading managed service provider (MSP) for law firms and other organizations...

WP Fastest Cache plugin bug exposes 600K WordPress sites to attacks

The WordPress plugin WP Fastest Cache is vulnerable to an SQL injection vulnerability that could all...

Microsoft has started testing Wi-Fi 7 support in Windows 11

Microsoft has started testing support for Wi-Fi 7 in Windows 11, which offers multi-gigabit speeds a...

Mirai DDoS malware variant expands targets with 13 router exploits

A Mirai-based DDoS (distributed denial of service) malware botnet tracked as IZ1H9 has added thirtee...

Toyota: Car location data of 2 million customers exposed for ten years

Toyota Motor Corporation disclosed a data breach on its cloud environment that exposed the car-locat...

Blog Archive

Recent Comments
No comments yet.

Recent Blogs

09 November 2024

Microsoft says recent Windows 11 updates break SSH connections

08 November 2024

Critical Veeam RCE bug now used in Frag ransomware attacks

08 November 2024

D-Link won’t fix critical flaw affecting 60,000 older NAS devices

08 November 2024

Unpatched Mazda Connect bugs let hackers install persistent malware

08 November 2024

Palo Alto Networks warns of potential PAN-OS RCE vulnerability

Tag Cloud

Top Breaches Of 2023

Customers Affected In T-Mobile Breach

Accounts Affected In MOVEit Breach

Customers Affected In MCNA Insurance Data Breach

Individuals Affected In PharMerica Data Breach

Users Affected In ChatGPT Major Data Breach

*Founder Shield End of Year 2023

© 2015 - 2024 All rights reserved. Designed & Developed by LBT Technology Group. | Privacy Policy | Terms & Use