The Hacker News

Compromised IAM Credentials Power a Large AWS Crypto Mining Campaign

Amazon reports a new AWS crypto mining campaign abusing IAM credentials, ECS, EC2, and termination protection for persistence ...
The Hacker News

React2Shell Vulnerability Actively Exploited to Deploy Linux Backdoors

React2Shell vulnerability CVE-2025-55182 is actively exploited to deploy Linux malware, run commands, and steal cloud ...
Dark Reading

Russia Hits Critical Orgs Via Misconfigured Edge Devices

Amazon detailed a long-running campaign by Russia against critical infrastructure organizations, particularly in the energy ...

Amazon security boss blames Russia's GRU for years-long energy-sector hacks

Russia's Main Intelligence Directorate (GRU) is behind a years-long campaign targeting energy, telecommunications, and tech ...

Amazon disrupts Russian GRU hackers attacking edge network devices

The Amazon Threat Intelligence team has disrupted active operations attributed to hackers working for the Russian foreign ...
Security Boulevard

AWS Report Links Multi-Year Effort to Compromise Cloud Services to Russia

Amazon Web Services (AWS) today published a report detailing a series of cyberattacks occurring over multiple years attributable to Russia's Main ...
CSO Online

Russian APT group pivots to network edge device misconfigurations

According to Amazon’s telemetry, the group’s infrastructure has overlaps with Sandworm, a group also known as APT44 and ...

Amazon says Russian hackers behind major cyber campaign to target Western energy sector

In November this year, security researchers from Bitdefender reported Curly COMrades running remote commands to enable the ...
InfoQ

AWS Transform Custom Tackles Technical Debt

AWS Transform Custom revolutionizes code modernization with AI-driven, out-of-the-box transformations for Java, Node.js, and ...

Amazon re:Invent: 7 Takeaways For The Agentic AI Era

Invent 2025 signals the shift from AI experimentation to AI architecture. Seven insights for business leaders navigating ...
GovInfoSecurity

Russia's GRU Tied to Critical Infrastructure Cloud Breaches

Misconfigured edge devices hosted in the cloud are giving nation-state hackers carte blanche to access Western critical ...

China's Ink Dragon hides out in European government networks

Chinese espionage crew Ink Dragon has expanded its snooping activities into European government networks, using compromised ...