Security researchers have discovered what appears to be the first crypto-mining malware operation that contains functionality to steal AWS credentials from infected servers. This new data-stealing ...

Exclusive A massive online heist targeting AWS customers during which digital crooks abused misconfigurations in public websites and stole source code, thousands of credentials, and other secrets ...

A major operation seeking exposed credentials of Amazon Web Services (AWS) customers has been discovered, with hackers scanning millions of websites and exfiltrating sensitive data from thousands of ...

Attackers are abusing Amazon Web Services' (AWS) Simple Email Service (SES) via legitimate open source tools to steal credentials and infiltrate organizations to execute network reconnaissance. In ...

Researchers find vulnerabilities in public sites that exposed sensitive information They later discovered a campaign using the flaws to exfiltrate data from "millions of websites" The crooks were ...

In a new campaign, threat actors have been trying to access EC2 Instance Metadata, which consists of sensitive virtual server information like IP address, instance ID, and security credentials by ...

An advanced malware campaign on the npm registry steals the very keys that control enterprise cloud infrastructure.

Misconfigured cloud instances have once again been abused to steal sensitive information such as login credentials, API keys, and more. This time around, the victims were countless Amazon Web Services ...