Bleeping Computer

Amazon: Ongoing cryptomining campaign uses hacked AWS accounts

Amazon’s AWS GuardDuty security team is warning of an ongoing crypto-mining campaign that targets its Elastic Compute Cloud (EC2) and Elastic Container Service (ECS) using compromised credentials for ...
Forbes

Warning: Amazon Confirms 5-Year-Long Russian Cyberattack

Amazon threat intelligence has confirmed prolonged Russian hack attacks targeting devices hosted on AWS infrastructure. Updated December 20 with news from Steve Schmidt, the chief security officer at ...
Bleeping Computer

Ransomware abuses Amazon AWS feature to encrypt S3 buckets

A new ransomware campaign encrypts Amazon S3 buckets using AWS's Server-Side Encryption with Customer Provided Keys (SSE-C) known only to the threat actor, demanding ransoms to receive the decryption ...
Virtualization Review

How to Be Notified When Someone Logs In with Your AWS Root Account

Amazon has long recommended that you use your AWS root account as seldom as possible, using instead an IAM account. The main reason for this recommendation is of course, that the root account is ...