The Hacker News

AWS CodeBuild Misconfiguration Exposed GitHub Repos to Potential Supply Chain Attacks

A misconfigured AWS CodeBuild webhook allowed bypass of actor ID checks, risking takeover of four AWS GitHub repositories before fixes in Sep 2025.
TechRadar

Hundreds of iOS apps could be leaking AWS credentials

Hundreds of mobile apps have been found to be leaking Amazon Web Services (AWS) credentials. A recent Symantec analysis identified 1,859 publicly available apps, 98% of which are iOS apps, containing ...