Security News

Attackers are encrypting AWS S3 data without using ransomware
2025-01-13 16:59

A ransomware gang dubbed Codefinger is encrypting data stored in target organizations’ AWS S3 buckets with AWS’s server-side encryption option with customer-provided keys (SSE-C), and asking for...

Ransomware abuses Amazon AWS feature to encrypt S3 buckets
2025-01-13 15:27

A new ransomware campaign encrypts Amazon S3 buckets using AWS's Server-Side Encryption with Customer Provided Keys (SSE-C) known only to the threat actor, demanding ransoms to receive the...

Ransomware crew abuses AWS native encryption, sets data-destruct timer for 7 days
2025-01-13 14:00

'Codefinger' crims on the hunt for compromised keys A new ransomware crew dubbed Codefinger targets AWS S3 buckets and uses the cloud giant's own server-side encryption with customer provided keys...

Crooks stole AWS credentials from misconfigured sites then kept them in open S3 bucket
2024-12-09 16:15

ShinyHunters-linked heist thought to have been ongoing since March Exclusive A massive online heist targeting AWS customers during which digital crooks abused misconfigurations in public websites...

AWS unveils cloud security IR service for a mere $7K a month
2024-12-03 01:30

Tap into the infinite scalability... of pricing Re:Invent Amazon Web Services has a new incident response service that combines automation and people to protect customers' AWS accounts - at a hefty price.…

The shocking speed of AWS key exploitation
2024-12-02 19:16

It’s no secret that developers often inadvertently expose AWS access keys online and we know that these keys are being scraped and misused by attackers before organizations get a chance to revoke...

AWS offers incident response service
2024-12-02 12:06

Amazon Web Services (AWS) has launched a new service to help organizations prepare for and recover from ransomware attacks, account takeovers, data breaches, and other security events: AWS...

Deploy a SOC using Kali Linux in AWS
2024-11-25 05:00

The Kali SOC in AWS project enables the deployment of a Security Operations Center (SOC) in AWS, utilizing the Kali Linux toolset for purple team activities. This environment is ideal for honing...

Malicious PyPI package with 37,000 downloads steals AWS keys
2024-11-09 15:17

A malicious Python package named 'fabrice' has been present in the Python Package Index (PyPI) since 2021, stealing Amazon Web Services credentials from unsuspecting developers. [...]

Malicious PyPI Package ‘Fabrice’ Found Stealing AWS Keys from Thousands of Developers
2024-11-07 09:07

Cybersecurity researchers have discovered a malicious package on the Python Package Index (PyPI) that has racked up thousands of downloads for over three years while stealthily exfiltrating...