Skip to main content
FreeIntelHub
Feed Threat Feed Search Trending
Intelligence CVE Priority Vulnerability IOC Lookup IOC Feed YARA Rules Phishing Lookup Exploit Lookup Pastes Dark Web
Adversaries Threat Groups Software Campaigns
Explore Dashboard Geo Map Heatmap MITRE ATT&CK
Browse Sources Vendors Categories Sectors
RSS API
FreeIntelHub
/
Sign In

Amazon

20 articles

AWS Security Blog General Amazon NEW 1h ago

AWS designated as a critical third party to the UK financial sector

Amazon Web Services EMEA Sarl (AWS) has been designated as a critical third party (CTP) to the UK financial sector by HM Treasury.

AWS Security Blog →

Infosecurity Magazine General Amazon GitHub NEW 1h ago

CISA Details Incident Response to Exposed AWS GovCloud Keys

CISA reveals how it responded after sensitive AWS GovCloud credentials and internal data were exposed in a public GitHub repository

Infosecurity Magazine →

The Hacker News General Amazon NEW 1h ago

Six New U-Boot Flaws Could Let Malicious Images Crash Devices or Run Code at Boot

Researchers at firmware security firm Binarly have found six new flaws in U-Boot, the small program that starts up hardware as varied as home routers, smart ...

The Hacker News →

The Hacker News Vulnerability Disclosure Amazon Intel SAP NEW 3h ago

Researcher Details WhatsApp-to-Host Attack Chain Using Three OpenClaw Flaws

Details have emerged about three now-patched security flaws in the OpenClaw personal artificial intelligence (AI) assistant that, if successfully exploited, ...

T1078 T1548

The Hacker News →

Help Net Security General Amazon NEW 5h ago

Incode brings on-device processing to age estimation for privacy-focused verification

Incode has launched On-Device Age Estimation, an age verification capability that performs age estimation and liveness detection directly on the user’s devic...

Help Net Security →

GBHackers General Amazon 7h ago

Wireshark 4.6.7 Released to Patch 12 Vulnerabilities in SSH, TLS, Wi-Fi and pcapng

Wireshark has released version 4.6.

1 IOC

GBHackers →

GBHackers Malware Amazon 11h ago

Hackers Compromise AWS AI Gateway Connected to Amazon Bedrock to Deploy XMRig Cryptominer

A compromise of an AI gateway linked to Amazon Bedrock, highlighting how generative AI infrastructure has become a new target within the enterprise attack la...

T1598

GBHackers →

Help Net Security General Amazon SAP 12h ago

AWS gives its ERP agent deny-by-default rules and a separate identity

Accounts receivable teams at large companies spend hours each day matching incoming bank payments to invoices by hand. When those payments sit unmatched for ...

T1592

Help Net Security →

GBHackers Vulnerability Disclosure Amazon 13h ago

Roundcube Webmail Security Update Patches Critical Zero-Click XSS and SSRF Bypass Flaws

Roundcube has released version 1.7.

GBHackers →

GBHackers TTPs Amazon 13h ago

AI-Assisted Hackers Compromise AWS Cloud in 72 Hours Using Stolen Credentials

An AI-assisted threat actor has demonstrated how quickly a modern AWS environment can be compromised when valid credentials, weak identity controls, and expo...

T1078

GBHackers →

AWS Security Blog General Amazon 18h ago

Introducing OAuth Support for AWS MCP Server

AWS MCP Server using the same credentials and sign-in methods that you already use for connecting to the AWS Management Console or AWS Command Line Interface...

AWS Security Blog →

HackRead General Amazon 1d ago

AI Gateway Connected to Amazon Bedrock Hijacked for Cryptomining

Darktrace says a LiteLLM AI gateway linked to Amazon Bedrock was compromised for cryptomining after signs of exposed SSH activity.

HackRead →

SC Media General Amazon 1d ago

Class-action lawsuit against X.ai's Grok tool expands with new plaintiffs alleging CSAM creation

The lawsuit, initially filed by three women, now includes two additional anonymous plaintiffs, Jane Does 4 and 5.

SC Media →

SC Media CVE Amazon 1d ago

BeyondTrust warns of critical flaws in remote access software

The vulnerabilities, tracked as CVE-2026-40138 and CVE-2026-40139, affect specific versions of BeyondTrust's RS and PRA software.

2 IOCs

SC Media →

CSO Online Malware Amazon 1d ago

Attack on Amazon Bedrock-linked AI gateway highlights new cloud security risk

A cloud intrusion that ended with the deployment of cryptomining malware has exposed a bigger risk for enterprises: AI gateways that concentrate access to cl...

CSO Online →

HackRead General Amazon 1d ago

GhostApproval Flaws Let Top AI Coding Tools Write Outside Workspaces

Wiz found GhostApproval symlink flaws in major AI coding assistants that could hide sensitive file targets, bypass approval checks and enable system access too.

HackRead →

GBHackers General Amazon GitLab 1d ago

GitLab Patches 8 Vulnerabilities Affecting CE and EE Installations

GitLab has released critical security updates to address eight vulnerabilities in its Community Edition (CE) and Enterprise Edition (EE). Administrators are ...

GBHackers →

Help Net Security General Amazon 1d ago

AWS centralizes access, spending, and governance for Claude

Claude apps gateway for AWS is a self-hosted control plane that gives organizations a single point of control over access, costs, and policies for Claude Cod...

Help Net Security →

Help Net Security General Amazon 1d ago

Wireshark 4.6.7 patches a dozen security flaws

Network analysts who open packet captures in Wireshark push untrusted data through a large set of protocol dissectors, and each parser is a spot where a malf...

Help Net Security →

Security Affairs CVE Amazon 1d ago

Ubiquiti Patches Critical UniFi OS Flaws Allowing Command Injection and Privilege Escalation

Ubiquiti patched seven UniFi OS flaws, including critical CVE-2026-50746, which allows command injection in UniFi Connect Application. Ubiquiti released secu...

T1059 T1548 1 IOC

Security Affairs →

1 2 3 ... 17 Next page»
FreeIntelHub · Open-source CTI platform

All articles belong to their respective owners. FreeIntelHub aggregates publicly available RSS feeds for informational purposes only. DMCA