New “whoAMI” Attack Exploits AWS AMI Name Confusion for Remote Code Execution

Updated on February 14, 2025

Cybersecurity researchers have disclosed a new type of name confusion attack called whoAMI that allows anyone who publishes an Amazon Machine Image (AMI) with a specific name to gain code execution within the Amazon Web Services (AWS) account.
“If executed at scale, this attack could be used to gain access to thousands of accounts,” Datadog Security Labs researcher Seth Art said in a report…

Read the rest of the story at Read More

Source: The Hacker News

September 21, 2024 Uncategorized

Ukraine Bans Telegram Use for Government...

December 2, 2024 Uncategorized

THN Recap: Top Cybersecurity Threats, To...

October 1, 2024 Uncategorized

New “whoAMI” Attack Exploits AWS AMI Name Confusion for Remote Code Execution

Related posts

Ukraine Bans Telegram Use for Government...

THN Recap: Top Cybersecurity Threats, To...

U.K. Hacker Charged in $3.75 Million Ins...

Leave a Comment Cancel reply

Recent News

Wormable AirPlay Flaws Enable Zero-Click RCE on Apple Devices via Public Wi-Fi

Commvault CVE-2025-34028 Added to CISA KEV After Active Exploitation Confirmed

⚡ Weekly Recap: Nation-State Hacks, Spyware Alerts, Deepfake Malware, Supply Chain Backdoors

Perfection is a Myth. Leverage Isn’t: How Small Teams Can Secure Their Google Workspace

Golden Chickens Deploy TerraStealerV2 to Steal Browser Credentials and Crypto Wallet Data

Malicious Go Modules Deliver Disk-Wiping Linux Malware in Advanced Supply Chain Attack

Iranian Hackers Maintain 2-Year Access to Middle East CNI via VPN Flaws and Malware

U.S. Charges Yemeni Hacker Behind Black Kingdom Ransomware Targeting 1,500 Systems

TikTok Slammed With €530 Million GDPR Fine for Sending E.U. Data to China

How to Automate CVE and Vulnerability Advisory Response with Tines