Security News > 2023 > October > EleKtra-Leak Cryptojacking Attacks Exploit AWS IAM Credentials Exposed on GitHub
2023-10-30 10:56
A new ongoing campaign dubbed EleKtra-Leak has set its eyes on exposed Amazon Web Service (AWS) identity and access management (IAM) credentials within public GitHub repositories to facilitate cryptojacking activities. "As a result of this, the threat actor associated with the campaign was able to create multiple AWS Elastic Compute (EC2) instances that they used for wide-ranging and
News URL
https://thehackernews.com/2023/10/elektra-leak-cryptojacking-attacks.html
Related news
- AWS, Google, and Azure CLI Tools Could Leak Credentials in Build Logs (source)
- PetSmart warns of credential stuffing attacks trying to hack accounts (source)
- Alert: Cybercriminals Deploying VCURMS and STRRAT Trojans via AWS and GitHub (source)
- Exploit released for Fortinet RCE bug used in attacks, patch now (source)
- Hackers Hijack GitHub Accounts in Supply Chain Attack Affecting Top-gg and Others (source)
- Retail chain Hot Topic hit by new credential stuffing attacks (source)
- Roku warns 576,000 accounts hacked in new credential stuffing attacks (source)
- Exploit released for Palo Alto PAN-OS bug used in attacks, patch now (source)
- Palo Alto firewalls: Public exploits, rising attacks, ineffective mitigation (source)
- Okta warns of "unprecedented" credential stuffing attacks on customers (source)