Security News > 2025 > January > Ransomware abuses Amazon AWS feature to encrypt S3 buckets

Ransomware abuses Amazon AWS feature to encrypt S3 buckets

2025-01-13 15:27

A new ransomware campaign encrypts Amazon S3 buckets using AWS's Server-Side Encryption with Customer Provided Keys (SSE-C) known only to the threat actor, demanding ransoms to receive the decryption key. [...]

News URL

https://www.bleepingcomputer.com/news/security/ransomware-abuses-amazon-aws-feature-to-encrypt-s3-buckets/

#amazon #AWS #buckets #encrypt #ransomware #S3

Related news

Attackers are encrypting AWS S3 data without using ransomware (source)
Week in review: AWS S3 data encrypted without ransomware, data of 15k Fortinet firewalls leaked (source)
Abandoned AWS S3 buckets can be reused in supply-chain attacks that would make SolarWinds look 'insignificant' (source)
Delivering Malware Through Abandoned Amazon S3 Buckets (source)
Ransomware crew abuses AWS native encryption, sets data-destruct timer for 7 days (source)

Related vendor

VENDOR	LAST 12M	#/PRODUCTS	LOW	MEDIUM	HIGH	CRITICAL	TOTAL VULNS
Amazon		59	4	39	61	15	119

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.