AWS – WindowsTechs.com

This Week in Security: The UK Wants Your iCloud, Libarchive Wasn’t Ready, and AWS

Posted on February 14, 2025 by Jonathan Bennett

There’s a constant tension between governments looking for easier ways to catch criminals, companies looking to actually protect their users’ privacy, and individuals who just want their data to be …read more Continue reading This Week in Security: The UK Wants Your iCloud, Libarchive Wasn’t Ready, and AWS→

Abandoned Amazon S3 Buckets Enabled Attacks Against Governments, Big Firms

Posted on February 5, 2025 by Eduard Kovacs

150 abandoned Amazon S3 buckets could have been leveraged to deliver malware or backdoors to governments and Fortune companies.
The post Abandoned Amazon S3 Buckets Enabled Attacks Against Governments, Big Firms appeared first on SecurityWeek.
Continue reading Abandoned Amazon S3 Buckets Enabled Attacks Against Governments, Big Firms→

FUNNULL Unmasked: AWS, Azure Abused for Global Cybercrime Operations

Posted on January 31, 2025 by Deeba Ahmed

Discover how cybercriminals use ‘Infrastructure Laundering’ to exploit AWS and Azure for scams, phishing, and money laundering. Learn about FUNNULL CDN’s tactics and their global impact on businesses and cybersecurity. Continue reading FUNNULL Unmasked: AWS, Azure Abused for Global Cybercrime Operations→

New Codefinger Ransomware Exploits AWS to Encrypt S3 Buckets

Posted on January 14, 2025 by Waqas

The Halcyon RISE Team has identified a new Codefinger ransomware campaign targeting Amazon S3 buckets. This attack leverages… Continue reading New Codefinger Ransomware Exploits AWS to Encrypt S3 Buckets→

Attackers are encrypting AWS S3 data without using ransomware

Posted on January 13, 2025 by Zeljka Zorz

A ransomware gang dubbed Codefinger is encrypting data stored in target organizations’ AWS S3 buckets with AWS’s server-side encryption option with customer-provided keys (SSE-C), and asking for money to hand over the key they used. They do not e… Continue reading Attackers are encrypting AWS S3 data without using ransomware→

FortiGuard Labs Links New EC2 Grouper Hackers to AWS Credential Exploits

Posted on January 1, 2025 by Deeba Ahmed

Researchers at FortiGuard Labs have identified a prolific attacker group known as “EC2 Grouper” who frequently exploits compromised credentials using AWS tools. Continue reading FortiGuard Labs Links New EC2 Grouper Hackers to AWS Credential Exploits→

Hackers Use Fake PoCs on GitHub to Steal WordPress Credentials, AWS Keys

Posted on December 17, 2024 by Deeba Ahmed

SUMMARY Datadog Security Labs’ cybersecurity researchers have discovered a new, malicious year-long campaign from a threat actor identified… Continue reading Hackers Use Fake PoCs on GitHub to Steal WordPress Credentials, AWS Keys→

Amazon Nova: Inside the Latest AI Models Revolutionizing Business

Posted on December 4, 2024 by Megan Crouse

Most of the Nova line is available now, with a heavy-duty “reasoning” model coming early in 2025. Continue reading Amazon Nova: Inside the Latest AI Models Revolutionizing Business→

The shocking speed of AWS key exploitation

Posted on December 2, 2024 by Zeljka Zorz

It’s no secret that developers often inadvertently expose AWS access keys online and we know that these keys are being scraped and misused by attackers before organizations get a chance to revoke them. Clutch Security researchers performed a test… Continue reading The shocking speed of AWS key exploitation→

AWS offers incident response service

Posted on December 2, 2024 by Zeljka Zorz

Amazon Web Services (AWS) has launched a new service to help organizations prepare for and recover from ransomware attacks, account takeovers, data breaches, and other security events: AWS Security Incident Response (SIR). Creating a case (Source: AWS)… Continue reading AWS offers incident response service→