Alert: Threat Actors Can Leverage AWS STS to Infiltrate Cloud Accounts

Updated on December 6, 2023

Threat actors can take advantage of Amazon Web Services Security Token Service (AWS STS) as a way to infiltrate cloud accounts and conduct follow-on attacks.
The service enables threat actors to impersonate user identities and roles in cloud environments, Red Canary researchers Thomas Gardner and Cody Betsworth said in a Tuesday analysis.
AWS STS is a web service that enables…

Read the rest of the story at Read More

Source: The Hacker News

September 7, 2024 Uncategorized

FBI Cracks Down on Dark Web Marketplace ...

February 4, 2025 Uncategorized

Watch Out For These 8 Cloud Security Shi...

February 10, 2025 Uncategorized

Alert: Threat Actors Can Leverage AWS STS to Infiltrate Cloud Accounts

Related posts

FBI Cracks Down on Dark Web Marketplace ...

Watch Out For These 8 Cloud Security Shi...

DragonRank Exploits IIS Servers with Bad...

Leave a Comment Cancel reply

Recent News

Wormable AirPlay Flaws Enable Zero-Click RCE on Apple Devices via Public Wi-Fi

Commvault CVE-2025-34028 Added to CISA KEV After Active Exploitation Confirmed

⚡ Weekly Recap: Nation-State Hacks, Spyware Alerts, Deepfake Malware, Supply Chain Backdoors

Perfection is a Myth. Leverage Isn’t: How Small Teams Can Secure Their Google Workspace

Golden Chickens Deploy TerraStealerV2 to Steal Browser Credentials and Crypto Wallet Data

Malicious Go Modules Deliver Disk-Wiping Linux Malware in Advanced Supply Chain Attack

Iranian Hackers Maintain 2-Year Access to Middle East CNI via VPN Flaws and Malware

U.S. Charges Yemeni Hacker Behind Black Kingdom Ransomware Targeting 1,500 Systems

TikTok Slammed With €530 Million GDPR Fine for Sending E.U. Data to China

How to Automate CVE and Vulnerability Advisory Response with Tines