Amazon AWS Archives - GBHackers Security | #1 Globally Trusted Cyber Security News Platform

AWS CDK Vulnerabilities Let Takeover S3 Bucket

Divya — Fri, 25 Oct 2024 11:32:13 +0000

A significant security vulnerability was uncovered in the AWS Cloud Development Kit (CDK), an open-source framework widely used by developers to define cloud infrastructure using familiar programming languages. This vulnerability could allow attackers to gain unauthorized access to S3 buckets, potentially leading to full account takeovers. The vulnerability was discovered during research that examined over […]

The post AWS CDK Vulnerabilities Let Takeover S3 Bucket appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Hackers Mimic Google, Microsoft & Amazon Domains for Phishing Attacks

Anupriya — Thu, 12 Sep 2024 06:38:08 +0000

Phishing remains a significant concern for both individuals and organizations. Recent findings from ThreatLabz have highlighted the alarming prevalence of phishing attacks targeting major brands, with Google, Microsoft, and Amazon emerging as the top three most impersonated companies. This article explores the intricacies of these phishing tactics, the role of certificate authorities and domain registrars, […]

The post Hackers Mimic Google, Microsoft & Amazon Domains for Phishing Attacks appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

AWS Launches Mithra To Detect Malicious Domains Across Systems

Tushar Subhra — Wed, 07 Aug 2024 12:08:39 +0000

Amazon’s e-commerce platforms and cloud services form a digital ecosystem requiring a strong cybersecurity framework. Amazon, which has a vast online presence covering multiple domains and services, is at great risk of being attacked by advanced cyber threats. For this reason, Amazon uses an innovative mixture of the latest technologies and old security measures to […]

The post AWS Launches Mithra To Detect Malicious Domains Across Systems appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

One-Click AWS Vulnerability Let Attackers Takeover User’s Web Management Panel

Divya — Fri, 22 Mar 2024 10:19:43 +0000

Tenable Research has identified a critical vulnerability within the AWS Managed Workflows for Apache Airflow (MWAA) service, which they have named “FlowFixation.” This vulnerability could have permitted attackers to execute a one-click takeover of a user’s web management panel for their Airflow instance. The discovery underscores the ongoing issue of misconfigured shared-parent domains, a problem […]

The post One-Click AWS Vulnerability Let Attackers Takeover User’s Web Management Panel appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Indian Authorities Crackdown Microsoft and Amazon tech support scammers

Sneka — Fri, 20 Oct 2023 08:38:25 +0000

Technical support fraud, also called tech and customer support fraud, is when someone pretends to be technical or customer support to trick people into giving them money. Criminals may offer help to fix problems like updating the computer Antivirus or the need to update a software license. Microsoft and Amazon supported CBI (Central Bureau of […]

The post Indian Authorities Crackdown Microsoft and Amazon tech support scammers appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Beware! Hackers Attack AWS EC2 Workloads to Steal Credentials

Balaji — Tue, 08 Nov 2022 03:43:56 +0000

Cybersecurity experts at Trend Micro have recently identified that hackers are actively attacking the Amazon Web Services (AWS) EC2 workloads to steal credentials. By exploiting this tool, hackers get the ability to exfiltrate essential data like access keys and tokens. In this case, the hackers sent the stolen data to a domain under their control. […]

The post Beware! Hackers Attack AWS EC2 Workloads to Steal Credentials appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

49 Million Instagram Influencers, Celebrities Personal Data Leaked Online

Balaji — Tue, 21 May 2019 12:47:27 +0000

A new massive database uncovered that contains nearly 49 million of Instagram Influencer’s, celebrities and brand account contact information leaked online. Security researcher Anurag Sen discovered this unprotected database and reported to Tech Crunch, in result, owners have been notified and secured the database. Further investigation reveals that the database owned by Mumbai-based social media […]

The post 49 Million Instagram Influencers, Celebrities Personal Data Leaked Online appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

540 Million Facebook Users Personal Data Exposed to the Public Internet

Gurubaran — Thu, 04 Apr 2019 06:33:48 +0000

Over 540 million Facebook users personal records that include comments, likes, reactions, account names, FB IDs exposed to the public Internet. All the data are collected and stored by Third-Party developers. Researchers from UpGuard found third-party Facebook app datasets, one from Mexico-based media company Cultura Colectiva and another one belongs to Facebook-integrated app “At the […]

The post 540 Million Facebook Users Personal Data Exposed to the Public Internet appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

250,000 Sensitive Legal Documents Leaked Online via Unprotected Elasticsearch Cluster

Balaji — Sat, 16 Mar 2019 08:06:31 +0000

Security researchers discovered 257,287 legal documents from unprotected Elasticsearch cluster that hosted on a US-based Amazon AWS server. The unprotected sensitive documents labeled as “not designated for publication‘” and the data contains 4.7GB highly sensitive legal documents. Further investigation reveals that the data managed by Lex Machina, an IP litigation research company and division of […]

The post 250,000 Sensitive Legal Documents Leaked Online via Unprotected Elasticsearch Cluster appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.