all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

AWS fixes 'confused deputy' vulnerability in AppSync

Add to bookmarks
Nov. 22, 2022, 10:01 p.m. | Jessica Lyons Hardcastle

The Register - Security www.theregister.com

Datadog security researchers found the flaw before miscreants did

Amazon Web Services (AWS) fixed a cross-tenant flaw in AWS AppSync that could allow miscreants to abuse that cloud service to assume identity and access management roles in other AWS accounts, and then gain access to and control over those resources. …

appsync aws fixes vulnerability

Visit resource

More from www.theregister.com / The Register - Security

Twitch ditches Safety Advisory Council, relaunches with vetted 'ambassadors' 1 day, 7 hours ago | www.theregister.com
advisory army council dismantled +7
Snowflake denies miscreants melted its security to steal data from top customers 1 day, 8 hours ago | www.theregister.com
analysts claims cloud cloud storage +15
US senator claims UnitedHealth's CEO, board appointed 'unqualified' CISO 1 day, 8 hours ago | www.theregister.com
appointed board cases catastrophe +21
Cyber cops plead for info on elusive Emotet mastermind 1 day, 10 hours ago | www.theregister.com
arrests big calling cops +10
New Nork-ish cyberespionage outfit uncovered after three years 1 day, 14 hours ago | www.theregister.com
cyber cybercrime cyberespionage data +8
Google to push ahead with Chrome's ad-blocker extension overhaul in earnest 1 day, 19 hours ago | www.theregister.com
access beta blocker browser +14
FlyingYeti phishing crew grounded after abominable Ukraine attacks 1 day, 23 hours ago | www.theregister.com
attack attacks claims cloudflare +13
Mystery miscreant remotely bricked 600,000 SOHO routers with malicious firmware update 2 days, 6 hours ago | www.theregister.com
assault bricked devices disabling +14
OpenAI is very smug after thwarting five ineffective AI covert influence ops 2 days, 6 hours ago | www.theregister.com
ai services covert elections generative +9

Jobs in InfoSec / Cybersecurity

Post a Job Search Talent

CyberSOC Technical Lead

@ Integrity360 | Sandyford, Dublin, Ireland
View on infosec-jobs.com

Cyber Security Strategy Consultant

@ Capco | New York City
View on infosec-jobs.com

Cyber Security Senior Consultant

@ Capco | Chicago, IL
View on infosec-jobs.com

Sr. Product Manager

@ MixMode | Remote, US
View on infosec-jobs.com

Corporate Intern - Information Security (Year Round)

@ Associated Bank | US WI Remote
View on infosec-jobs.com

Senior Offensive Security Engineer

@ CoStar Group | US-DC Washington, DC
View on infosec-jobs.com