VulnHub

Articles tagged "Amazon"

Found 20 articles

Amazon warns that Russia’s Sandworm has shifted its tactics

CyberScoop

Actively Exploited

Amazon has alerted users that Sandworm, a group associated with Russia's military intelligence, has changed its approach to cyberattacks. Instead of exploiting software vulnerabilities, the group is now targeting poorly configured network edge devices to maintain access to their targets. This shift raises concerns for organizations that may not have secured their network configurations adequately. The focus on these devices suggests attackers are adapting their strategies to exploit weaknesses in network management rather than relying on traditional software flaws. This change could lead to increased risks for various industries, especially those with critical infrastructure that may be vulnerable due to lax network settings.

Impact: Network edge devices, poorly configured systems

Remediation: Organizations should review and secure their network edge devices, ensuring proper configuration and access controls are in place.

Exploit Vulnerability Critical

4 months ago

Read Original

AWS: China-linked threat actors weaponized React2Shell hours after disclosure

Security Affairs

Actively Exploited

AWS Security has reported that multiple China-linked threat actors began exploiting the React2Shell vulnerability (CVE-2025-55182) within hours of its disclosure. Although this flaw does not affect AWS services, the rapid exploitation highlights the urgency for organizations to address this vulnerability to prevent potential breaches.

Impact: CVE-2025-55182 (React2Shell) - Affects systems utilizing the React2Shell framework; specific products and vendors not detailed.

Remediation: Organizations should implement security patches for React2Shell as soon as they are available. Regularly update and monitor systems for vulnerabilities, and apply best practices in security configurations to mitigate risks associated with this flaw.

CVE Vulnerability

4 months ago

Read Original

Report highlights persistent credential management flaw

SCM feed for Latest

The 2025 State of Cloud Security report highlights a significant cybersecurity threat due to the prevalence of outdated cloud identities, with 59% of AWS IAM users and 55% of Google Cloud service accounts having active keys older than one year. This creates a substantial attack surface, increasing the risk of unauthorized access and potential breaches.

Impact: AWS IAM users, Google Cloud service accounts

Remediation: Regularly audit and rotate cloud identity keys, implement key management best practices, and enforce policies for key expiration and renewal.

4 months ago

Read Original

‘Korea’s Amazon’ Coupang discloses a data breach impacting 34M customers

Security Affairs

Coupang, a major South Korean e-commerce platform, has reported a significant data breach affecting approximately 34 million customers over a five-month period. The breach has exposed personal information, raising concerns about customer privacy and security.

Impact: Coupang customer personal information

Remediation: N/A

Data Breach

4 months ago

Read Original

Iran-Linked Hackers Mapped Ship AIS Data Days Before Real-World Missile Strike Attempt

The Hacker News

Iran-linked hackers have been involved in cyber warfare to support real-world missile strikes, highlighting the dangerous convergence of cyber attacks and kinetic warfare. This trend indicates a growing need for new frameworks to address the evolving nature of warfare, as traditional boundaries between cyber and physical attacks become increasingly blurred.

Impact: N/A

Remediation: N/A

4 months ago

Read Original

PreviousPage 2 of 2