InfoQ

AWS Launches Open-Source Agent for AWS Secrets Manager

Unlock the full InfoQ experience by logging in! Stay updated with your favorite authors and topics, engage with content, and download exclusive resources. Jinsong Yu shares deep architectural insights ...
livedoor ニュース

AWSおよびGoogle CloudのCLIツールに情報漏洩の脆弱性、ユーザーの対策 ...

Orca Securityは4月16日(米国時間)、「LeakyCLI: AWS & Google Cloud Command Line Tools|Orca Security」において、Amazon Web Services(AWS)およびGoogle Cloudのコマンドラインツールに、認証情報を漏洩する可能性のある脆弱性を発見したと報じた。 これらツールはビルドログ内に環境 ...
CSOonline

AWS and Google Cloud command-line tools can expose secrets in CI/CD logs

Security researchers warn that certain commands executed in the AWS and Google Cloud command-line interfaces (CLIs) will return credentials and other secrets stored in environment variables as part of ...
Infosecurity-magazine.com

Hackers Exploit Misconfigurations in Public Websites With Improperly Exposed AWS Credentials

A significant cyber operation exploiting vulnerabilities in improperly configured public websites has been linked to the Nemesis and ShinyHunters hacking groups, exposing sensitive data, including ...
Cloud Computing

Keeping secrets: Tips for protecting your data in AWS S3

Amazon Web Services is the juggernaut in the cloud provider space, and with any piece of technology comes the need for proper security. In this regard, AWS is no exception. In this piece, we will ...
CSOonline

AWS customers face massive breach amid alleged ShinyHunters regroup

Vulnerabilities and misconfiguration in a huge number of public-facing websites allowed the attackers to gain access to sensitive customer data used in AWS services. Terabytes of data belonging to ...
TechRadar

AWS customers hit by major cyberattack which then stored stolen credentials in plain sight

Researchers discover campaign to scan for exposed data from "millions of websites" The crooks were selling the data on the dark web for "hundreds of euros" AWS says it has now fixed the issue, but ...