Skip to main content
FreeIntelHub
Feed Threat Feed Search Trending
Intelligence CVE Priority Vulnerability IOC Lookup IOC Feed YARA Rules Phishing Lookup Exploit Lookup Pastes Dark Web
Adversaries Threat Groups Software Campaigns
Explore Dashboard Geo Map Heatmap MITRE ATT&CK
Browse Sources Vendors Categories Sectors
RSS API
FreeIntelHub
/
Sign In

Amazon

20 articles

The Record General Amazon Jun 5

EU unveils tech sovereignty package to cut reliance on US, Chinese suppliers

The package bundles two draft laws — a Chips Act 2.0 and a Cloud and AI Development Act (CADA) — alongside an Open Source Strategy and a roadmap for digitali...

The Record →

AWS Security Blog General Amazon Jun 4

Amazon Cognito unlocks advanced capabilities with next-generation infrastructure

Amazon Cognito recently introduced high-throughput performance for demanding workloads, customer-managed keys for full control over data encryption at rest, ...

AWS Security Blog →

AWS Security Blog DDoS Amazon Jun 4

Gain visibility into DDoS attacks with flow logs in AWS Shield Advanced

Reconstructing distributed denial of service (DDoS) attack traffic used to mean combining data from multiple sources after the fact. AWS Shield Advanced atta...

T1498 T1592

AWS Security Blog →

AWS Security Blog General Amazon Jun 4

Customize federated sign-in with new Amazon Cognito Lambda trigger

You can use Amazon Cognito user pools to add sign-up and sign-in functionality to your web and mobile applications.

AWS Security Blog →

SC Media Vulnerability Disclosure Amazon Jun 4

US agencies warn of hackers targeting fuel tank monitoring systems

Threat actors are exploiting vulnerabilities such as authentication bypass, hardcoded credentials, OS command execution flaws, SQL injection, and privilege e...

T1548 T1556

SC Media →

GBHackers Zero-Day Amazon Jun 4

Acer Confirms Patch in Progress for Wave 7 Router 0-Day Flaw

Acer has confirmed that it is actively developing a firmware patch to address critical zero-day vulnerabilities affecting its Wave 7 routers, following respo...

GBHackers →

Help Net Security General Amazon Jun 4

Attackers already know the secrets are on your developers’ machines. Do you?

In a recent GitGuardian analysis, an average of 150 secrets were found on a sample of developer endpoints. Private keys accounted for 38% of unique secrets, ...

Help Net Security →

SecurityWeek General Amazon WordPress Jun 3

Kirki, Burst Statistics WordPress Plugin Flaws in Attackers’ Crosshairs

Threat actors are exploiting vulnerable Kirki and Burst Statistics deployments to elevate privileges and take over websites. The post Kirki, Burst Statistics...

SecurityWeek →

GBHackers Ransomware Amazon Fortinet Jun 3

Gentlemen Ransomware Exploits Fortinet Flaws, AI, and Custom C2 Tools

A newly analyzed leak tied to The Gentlemen ransomware group reveals how modern ransomware operations are evolving in structure and tooling while relying on ...

GBHackers →

GBHackers TTPs Amazon Jun 3

HazyBeacon Campaign Abuses AWS for Stealthy C2 Communications

A newly documented cyber espionage operation known as HazyBeacon, tracked as CL-STA-1020, is leveraging Amazon Web Services (AWS) to build stealthy command-a...

T1071

GBHackers →

Infosecurity Magazine General Amazon Jun 3

Infosecurity Europe: Patch Responsibility Remains Up for Grabs as AI Unearths Decades of Flaws

The emergence of AI models capable to autonomously find and fix vulnerabilities at scale is having a significant impact on patching management, experts say

Infosecurity Magazine →

Help Net Security General Amazon Jun 3

Agent Threat Rules: Open detection rule format for AI agent security threats

AI agents run inside coding assistants, MCP servers, and multi-agent frameworks, and the access that makes them useful also opens paths to prompt injection, ...

T1078

Help Net Security →

AWS Security Blog General Amazon Jun 2

Identify unused AWS KMS keys and prevent accidental key deletions

As you scale your use of Amazon Web Services (AWS), managing KMS keys becomes increasingly important. Whether you manage a handful of keys or thousands acros...

T1598

AWS Security Blog →

AWS Security Blog General Amazon Jun 2

Secure multi-tenant AI agents with Amazon Bedrock AgentCore resource-based policies

Software as a service (SaaS) providers building AI-powered applications on Amazon Bedrock AgentCore often need to serve multiple tenants with distinct securi...

AWS Security Blog →

Qualys Blog TTPs Amazon Intel Jun 2

The HazyBeacon Protocol – How Malware Weaponizes Amazon Web Services (AWS) Lambda Function URLs

Key Takeaways The Rise of Cloud-Native Command and Control (C2) Command and control (C2) infrastructure traditionally lived outside the victim environment. M...

T1071

Qualys Blog →

GBHackers Vulnerability Disclosure Amazon GitHub Jun 2

Claude Code GitHub Actions Flaw Exposes Repositories to Full Compromise

A critical supply chain vulnerability in Anthropic’s Claude Code GitHub Actions workflow has been disclosed, exposing thousands of repositories to potential ...

GBHackers →

Help Net Security General Amazon Jun 2

OpenAI brings frontier AI to existing AWS environments

OpenAI frontier models and Codex are now available on AWS, giving customers access to OpenAI capabilities within AWS environments and the controls needed to ...

Help Net Security →

Cyberscoop General Amazon Jun 1

USPS moving forward with mail-in ballot changes as courts weigh Trump’s election order 

A judge said Democrats and civil groups filed the lawsuit too early to demonstrate harm, but that could change after newly proposed postal regulations. The p...

Cyberscoop →

CSO Online Vulnerability Disclosure Amazon Oracle Jun 1

Oracle’s first monthly patch release fixes 35 flaws, including 11 rated ‘critical’

Oracle has released the first security fixes in its new monthly Critical Security Patch Update (CSPU) cycle, designed to address urgent vulnerabilities that ...

CSO Online →

SC Media Data Breach Amazon Jun 1

California sues 23andMe over 2023 data breach

The lawsuit stems from a credential-stuffing attack in October 2023, where threat actors exploited weak user credentials to access accounts.

SC Media →

«Previous page 1 ... 7 8 9 10 11 ... 17 Next page»
FreeIntelHub · Open-source CTI platform

All articles belong to their respective owners. FreeIntelHub aggregates publicly available RSS feeds for informational purposes only. DMCA