How attackers abuse S3 Bucket Namesquatting — And How to Stop Them
AWS S3 bucket names are global with predictable names that can be exploited in "S3 bucket namesquatting" attacks to access or ...
CSOonline4d
Abandoned AWS S3 buckets open door to remote code execution, supply-chain compromises
Attackers re-register abandoned AWS S3 buckets filled with malicious files that are executed by applications looking for ...
Bleeping Computer27d
Ransomware abuses Amazon AWS feature to encrypt S3 buckets
A new ransomware campaign encrypts Amazon S3 buckets using AWS's Server-Side Encryption with Customer Provided Keys (SSE-C) known only to the threat actor, demanding ransoms to receive the ...
TechRadar27d
AWS S3 feature abused by ransomware hackers to encrypt storage buckets
Attackers access storage buckets with exposed AWS keys The files ... this way Cybercriminals have started abusing legitimate AWS S3 features to encrypt victim buckets in a unique twist to the ...
CSOonline28d
Act fast to blunt a new ransomware attack on AWS S3 buckets
The target is Amazon S3 buckets and the attack uses AWS’ own encryption to make data virtually unrecoverable without paying the attackers for a decryption key, said a report by researchers at ...
heise online24d
Codefinger ransomware encrypts Amazon S3 buckets
The Codefinger ransomware encrypts data in Amazon S3 buckets. There are many AWS access points circulating on the darknet that open the door to it. A current ransomware campaign is targeting data ...
CRN7y
Military Vet Data Exposed In The Latest Data Leak Involving Unsecured AWS Storage Buckets
The security researcher's Cyber Risk Team found thousands of documents from veterans looking for work with the North Carolina-based private security firm sitting in an AWS S3 bucket that could ...